Kein offensichtliches Problem - Gegensheck Log - hat jemand Zeit?

tiger2come · 30.06.2008, 09:16

Hallo,

hat jemand Zeitdafür, einen Blick auf meinen Log zu werfen und mich über etwaig kritische Anwendungen zu informieren?

Vielen Dank

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:04:51, on 30.06.2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
C:\Programme 02\Security\ClamWin\bin\ClamTray.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\WINDOWS\system32\oodtray.exe
F:\System VMware\VMware Workstation PRG\vmware-tray.exe
C:\WINDOWS\system32\ctfmon.exe
F:\Programme 03\Security\TROJAN-SCANNER\Spybot\Spybot v1.5.2.20 PRG\TeaTimer.exe
F:\programme 03\desktop\dexpot\dexpot prg\dexpot.exe
F:\Programme 03\System\Virtual Environment\Sandboxie PRG\SbieCtrl.exe
F:\Programme 03\Security\InterNet u NETWORK\PeerGuardian 2\PeerGuardian2 PRG\pg2.exe
C:\Program Files\Terminator\TV7131 Utilities\P3XRCtl.exe
C:\Program Files\Allzeit Atomzeit\Atomzeit.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Programme 02\Security\FRITZ!DSL\IGDCTRL.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\oodag.exe
F:\Programme 03\Recovery\R(ecovery)-Studio\R-Studio v3.5_de\R-Studio Agent 3.0 build 841_de PRG\RSAgent.exe
F:\Programme 03\System\Virtual Environment\Sandboxie PRG\SbieSvc.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
F:\Programme 03\Security\TROJAN-SCANNER\Spyware Terminator\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\VMware\VMware Virtual Image Editing\vmount2.exe
C:\WINDOWS\system32\vmnat.exe
F:\System VMware\VMware Workstation PRG\vmware-authd.exe
C:\WINDOWS\system32\vmnetdhcp.exe
F:\Programme 03\InterNet\SHARING\µTorrent\µTorrent 1.6.1 Build 490\utorrent161.exe
C:\WINDOWS\system32\wuauclt.exe
F:\Programme 03\InterNet\SHARING\BitTorrent\BiiTorrent 6 PRG\bittorrent.exe
C:\WINDOWS\System32\svchost.exe
F:\Programme 03\Uhr & Zeit & Kalender\Analoguhr v2.03 (c´t)clock\CLOCK.EXE
F:\Programme 03\Desktop\PrintScreen\PrintScreen 2.6\PrintScreen 2.6 PRG\PrintScreen.exe
C:\WINDOWS\system32\taskmgr.exe
C:\WINDOWS\explorer.exe
F:\Programme 03\Dateienverwaltung\EXPLORER\freeCommander\freeCommander 2007.05 a PRG\FreeCommander.exe
C:\WINDOWS\system32\NOTEPAD.EXE
F:\Programme 03\Browser & Editoren\Firefox\Firefox 3.0 PRG\firefox.exe
F:\Programme 03\Kommerz\eBay\Biet-O-Matic PRG\Biet-O-Matic.exe
F:\Programme 03\Dateienverwaltung\EXPLORER\freeCommander\freeCommander 2007.05 a PRG\FreeCommander.exe
c:\program files\winrar\winrar.exe
C:\Programme 02\System\Defrag Server PRG\oodcnt.exe
F:\Programme 03\Media\vlc media player\VLC media player 0.8.6f PRG\vlc.exe
C:\Program Files\WinRAR\WinRAR.exe
F:\Programme 03\Security\HijackThis 2.0.2 PRG\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\ctbr.dll
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Programme 03\InterNet\Downloadmanager\Flashget PRG\jccatch.dll
O2 - BHO: (no name) - {487C9905-26A8-42C8-8033-C58AD3D2AEC3} - (no file)
O2 - BHO: (no name) - {4B47CA08-3A4F-44DF-A695-957A5C968664} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - F:\PROGRA~1\Security\TROJAN~1\Spybot\SPYBOT~1.20P\SDHelper.dll
O2 - BHO: (no name) - {5FB1E262-3760-4C69-8445-E095311927F8} - (no file)
O2 - BHO: (no name) - {651c743f-8651-4f74-8561-63df7d2a440f} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {897021FF-87CC-4096-B5AE-CA2164EE6B4E} - (no file)
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Programme 03\InterNet\Downloadmanager\Flashget PRG\getflash.dll
O3 - Toolbar: &Crawler Toolbar - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\ctbr.dll
O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
O4 - HKLM\..\Run: [ClamWin] "C:\Programme 02\Security\ClamWin\bin\ClamTray.exe" --logon
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [OODefragTray] C:\WINDOWS\system32\oodtray.exe
O4 - HKLM\..\Run: [vmware-tray] F:\System VMware\VMware Workstation PRG\vmware-tray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] F:\Programme 03\Security\TROJAN-SCANNER\Spybot\Spybot v1.5.2.20 PRG\TeaTimer.exe
O4 - HKCU\..\Run: [Dexpot 1.2] f:\programme 03\desktop\dexpot\dexpot prg\dexpot.exe
O4 - HKCU\..\Run: [SandboxieControl] "F:\Programme 03\System\Virtual Environment\Sandboxie PRG\SbieCtrl.exe"
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O4 - Startup: ERUNT AutoBackup.lnk = C:\Programme 02\System\Registry\ERUNT\AUTOBACK.EXE
O4 - Startup: HDDlife.lnk = ?
O4 - Global Startup: AutorunsDisabled
O4 - Global Startup: Dexpot v1.4.lnk = Desktop\Dexpot\Dexpot PRG\Dexpot.exe
O4 - Global Startup: PeerGuardian2 (for Torrents).lnk = Security\InterNet u NETWORK\PeerGuardian 2\PeerGuardian2 PRG\pg2.exe
O4 - Global Startup: TV Remote Control.lnk = C:\Program Files\Terminator\TV7131 Utilities\P3XRCtl.exe
O4 - Global Startup: Uhr Allzeit Atomzeit (leise, 3 Min. verzögert).lnk = C:\Program Files\Allzeit Atomzeit\Atomzeit.exe
O8 - Extra context menu item: &Alles mit FlashGet laden - C:\Programme 03\InterNet\Downloadmanager\Flashget PRG\jc_all.htm
O8 - Extra context menu item: &Mit FlashGet laden - C:\Programme 03\InterNet\Downloadmanager\Flashget PRG\jc_link.htm
O8 - Extra context menu item: Block advertisement - h**p://localhost:4002/cookie.cooker/scriptwerbung
O8 - Extra context menu item: CC Web-Interface - h**p://localhost:4002/cookie.cooker/loadifscript
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: Fill form (random) - h**p://localhost:4002/cookie.cooker/fillscriptr
O8 - Extra context menu item: Fill form (real data) - h**p://localhost:4002/cookie.cooker/fillscriptp
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~2\Office\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Zur Filterliste hinzufügen (WebWasher) - h**p://-Web.Washer-/ie_add
O9 - Extra button: (no name) - AutorunsDisabled - (no file)
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\Office\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\PROGRA~1\Security\TROJAN~1\Spybot\SPYBOT~1.20P\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\PROGRA~1\Security\TROJAN~1\Spybot\SPYBOT~1.20P\SDHelper.dll
O13 - DefaultPrefix:
O13 - WWW Prefix:
O13 - Home Prefix:
O13 - Mosaic Prefix:
O13 - FTP Prefix:
O13 - Gopher Prefix:
O17 - HKLM\System\CCS\Services\Tcpip\..\{504F516C-54BB-494C-96E6-0FB50C5B8B22}: NameServer = 192.168.178.254,192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{CED3DDF5-9A7D-40DB-AE23-FD3E4DCA95EA}: NameServer = 192.168.0.20,192.168.0.1
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\ctbr.dll
O20 - Winlogon Notify: byXOiGVL - C:\WINDOWS\
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - F:\Programme 03\Security\TROJAN-SCANNER\Ad-aware\Ad-Aware 2007 PRG\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVM IGD CTRL Service - AVM Berlin - C:\Programme 02\Security\FRITZ!DSL\IGDCTRL.EXE
O23 - Service: Bonjour-Dienst (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: AVM FRITZ!web Routing Service (de_serv) - AVM Berlin - C:\Program Files\Common Files\AVM\de_serv.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: IZMQOUDXFALJ - Sysinternals - Windows Sysinternals: Documentation, downloads and additional resources - C:\DOCUME~1\a\LOCALS~1\Temp\IZMQOUDXFALJ.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - (no file)
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: R-Studio Agent - R-Tools Technology Inc. - F:\Programme 03\Recovery\R(ecovery)-Studio\R-Studio v3.5_de\R-Studio Agent 3.0 build 841_de PRG\RSAgent.exe
O23 - Service: Sandra Service (SandraTheSrv) - SiSoftware - F:\Programme 03\System\Diagnose\Sisoft Sandra\SiSoft Sandra 2005 PRG\RpcSandraSrv.exe
O23 - Service: Sandboxie Service (SbieSvc) - tzuk - F:\Programme 03\System\Virtual Environment\Sandboxie PRG\SbieSvc.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - F:\Programme 03\Security\TROJAN-SCANNER\Spyware Terminator\Spyware Terminator\sp_rsser.exe
O23 - Service: VMware Agent Service (ufad-ws60) - VMware, Inc. - F:\System VMware\VMware Workstation PRG\vmware-ufad.exe
O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - F:\System VMware\VMware Workstation PRG\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\WINDOWS\system32\vmnetdhcp.exe
O23 - Service: VMware Virtual Mount Manager Extended (vmount2) - VMware, Inc. - C:\Program Files\Common Files\VMware\VMware Virtual Image Editing\vmount2.exe
O23 - Service: VMware NAT Service - VMware, Inc. - C:\WINDOWS\system32\vmnat.exe

--
End of file - 11134 bytes

Kein offensichtliches Problem - Gegensheck Log - hat jemand Zeit?

Log-Analyse und Auswertung: Kein offensichtliches Problem - Gegensheck Log - hat jemand Zeit?

Kein offensichtliches Problem - Gegensheck Log - hat jemand Zeit?

Ähnliche Themen: Kein offensichtliches Problem - Gegensheck Log - hat jemand Zeit?