Auch mich hats wohl erwischt. :-(

mindblower

Hi,
glaube mich hats auch erwischt, habe alle möglichen Programme probiert, leider kein Erfolg, immer diese verdammt Home Search Startseite und ständige Popups. Und der ganze Rechner lhmt teilweise...
Vielen Dank für Eure Hilfe !






Logfile of HijackThis v1.98.2
Scan saved at 21:35:41, on 14.09.2004
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
I:\WINDOWS\System32\smss.exe
I:\WINDOWS\system32\winlogon.exe
I:\WINDOWS\system32\services.exe
I:\WINDOWS\system32\lsass.exe
I:\WINDOWS\system32\svchost.exe
I:\WINDOWS\System32\svchost.exe
I:\Programme\Gemeinsame Dateien\Symantec Shared\ccSetMgr.exe
I:\Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe
I:\WINDOWS\system32\spoolsv.exe
I:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe
I:\Programme\FRITZ!DSL\FritzDsl.exe
I:\WINDOWS\System32\DVDRAMSV.exe
I:\Tools\NAV2004\NORTON~4\GHOSTS~2.EXE
I:\WINDOWS\System32\mgabg.exe
I:\Tools\NAV2004\Norton Antivirus\navapsvc.exe
I:\Tools\NAV2004\NORTON~2\NPROTECT.EXE
I:\WINDOWS\ODBC.INI:fdkar
I:\Tools\NAV2004\NORTON~2\SPEEDD~1\NOPDB.EXE
I:\WINDOWS\System32\svchost.exe
I:\Tools\NAV2004\Norton Antivirus\SAVScan.exe
I:\WINDOWS\explorer.exe
I:\WINDOWS\System32\taskmgr.exe
I:\Programme\Windows Media Player\wmplayer.exe
I:\Programme\Outlook Express\msimn.exe
I:\WINDOWS\crnm32.exe
I:\Programme\Internet Explorer\IEXPLORE.EXE
I:\Dokumente und Einstellungen\x\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://I:\WINDOWS\system32\casnf.dll/sp.html#29126
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = res://I:\WINDOWS\system32\casnf.dll/sp.html#29126
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchURL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = res://I:\WINDOWS\system32\casnf.dll/sp.html#29126
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = res://I:\WINDOWS\system32\casnf.dll/sp.html#29126
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = res://I:\WINDOWS\system32\casnf.dll/sp.html#29126
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://I:\WINDOWS\system32\casnf.dll/sp.html#29126
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://I:\WINDOWS\system32\casnf.dll/sp.html#29126
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page_bak = about:blank
R3 - Default URLSearchHook is missing
O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - I:\Internet\DOWNLO~1\FLASHG~1.96\jccatch.dll
O2 - BHO: (no name) - {ABB2630D-61F6-BCAF-850C-D9085124F78C} - I:\WINDOWS\system32\apidp32.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - I:\Tools\NAV2004\Norton Antivirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - I:\Tools\NAV2004\Norton Antivirus\NavShExt.dll
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [SSC_UserPrompt] I:\Programme\Gemeinsame Dateien\Symantec Shared\Security Center\UsrPrmpt.exe
O4 - HKLM\..\Run: [ccApp] "I:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [MSConfig] I:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKLM\..\Run: [crnm32.exe] I:\WINDOWS\crnm32.exe
O4 - Startup: BHODemon 2.0.lnk = I:\Tools\BHO Demon\BHODemon.exe
O4 - Startup: FRITZ!web DSL.lnk = I:\Programme\FRITZ!DSL\FritzDsl.exe
O8 - Extra context menu item: Alles mit FlashGet laden - I:\Internet\Downloadmanager\FlashGet 0.96\jc_all.htm
O8 - Extra context menu item: Mit FlashGet laden - I:\Internet\Downloadmanager\FlashGet 0.96\jc_link.htm
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://I:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - I:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ICQ 4.1 - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - I:\Programme\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - I:\Programme\ICQLite\ICQLite.exe
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - I:\Internet\DOWNLO~1\FLASHG~1.96\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - I:\Internet\DOWNLO~1\FLASHG~1.96\flashget.exe
O9 - Extra button: Add bid - {866875B8-9855-48f8-BAAB-8002C325BE69} - I:\Programme\Paragon\Last Minute Gebot\plmg.exe (HKCU)
O9 - Extra 'Tools' menuitem: Add bid - {866875B8-9855-48f8-BAAB-8002C325BE69} - I:\Programme\Paragon\Last Minute Gebot\plmg.exe (HKCU)
O15 - Trusted Zone: *.05p.com
O15 - Trusted Zone: *.mt-download.com
O15 - Trusted Zone: *.my-internet.info
O15 - Trusted Zone: *.scoobidoo.com
O15 - Trusted Zone: *.searchmiracle.com
O16 - DPF: v2cab - http://searchmiracle.com/cab/v2cab.cab
O16 - DPF: {15AD4789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://public.windupdates.com/get_fi...a29296baabe1d6
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/acti..._v1-0-3-12.cab
O16 - DPF: {53B8B406-42E4-4DD3-96E7-9DEC8CEB3DD8} (ICQVideoControl Class) - http://xtraz.icq.com/xtraz/activex/ICQVideoControl.cab
O16 - DPF: {E855A2D4-987E-4F3B-A51C-64D10A7E2479} (EPSImageControl Class) - http://tools.ebayimg.com/eps/activex...l_v1-0-3-0.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{39C3105F-E96A-4F5B-A4BA-9110B4A036E6}: NameServer = 192.168.120.252,192.168.120.253
O17 - HKLM\System\CCS\Services\Tcpip\..\{D9C8CE98-983C-4802-8F90-659E736139A4}: NameServer = 192.168.122.252,192.168.122.253
O18 - Protocol: icoo - {4A8DADD4-5A25-4D41-8599-CB7458766220} - (no file)