bitte mal schauen

sweetychen

hallo,

ich habe schon automatisch das logfile auswerten lassen aber ich habe das gefühl da könnte noch mehr weg, schaut ihr bitte mal durch.



Logfile of HijackThis v1.98.2
Scan saved at 12:10:45, on 04.11.2004
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\system32\spoolsv.exe
E:\WINDOWS\system32\rundll32.exe
E:\WINDOWS\Explorer.EXE
E:\Programme\Java\j2re1.4.2_03\bin\jusched.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\System32\gbhfrugy.exe
E:\Program Files\Windows AdTools\WinAdTools.exe
E:\Program Files\Windows AdTools\WinRatchet.exe
E:\windows\180ax.exe
E:\Programme\SED\SED.exe
E:\PROGRA~1\GEMEIN~1\WinTools\WToolsA.exe
E:\WINDOWS\System32\ctfmon.exe
E:\Programme\Gemeinsame Dateien\WinTools\WSup.exe
E:\WINDOWS\System32\wuauclt.exe
E:\Programme\Mozilla Firefox\firefox.exe
E:\Dokumente und Einstellungen\ck6\Lokale Einstellungen\Temp\Temporäres Verzeichnis 1 für hijackthis.zip\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.de/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = http://www.google.de/
R3 - Default URLSearchHook is missing
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - E:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [SunJavaUpdateSched] E:\Programme\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [ICQ Lite] C:\ICQLite\ICQLite.exe -minimize
O4 - HKLM\..\Run: [derylkwv] E:\WINDOWS\System32\gbhfrugy.exe
O4 - HKLM\..\Run: [Windows AdTools] E:\Program Files\Windows AdTools\WinAdTools.exe
O4 - HKLM\..\Run: [gbozcxip] E:\WINDOWS\gbozcxip.exe
O4 - HKCU\..\Run: [CTFMON.EXE] E:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [AIM] C:\AIM95\aim.exe -cnetwait.odl
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\AIM95\aim.exe
O9 - Extra button: ICQ 4.1 - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\ICQLite\ICQLite.exe
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - E:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - E:\WINDOWS\web\related.htm
O10 - Unknown file in Winsock LSP: e:\windows\system32\lspak.dll
O10 - Unknown file in Winsock LSP: e:\windows\system32\lspak.dll
O10 - Unknown file in Winsock LSP: e:\windows\system32\lspak.dll
O10 - Unknown file in Winsock LSP: e:\windows\system32\lspak.dll
O16 - DPF: {0EB73E39-8AD4-43E8-8FBA-0165C2CCDB8B} (GameControl Class) - http://turnier.freenet.de/midasa.cab
O16 - DPF: {79849612-A98F-45B8-95E9-4D13C7B6B35C} (Loader2 Control) - http://static.topconverting.com/activex/loader2.ocx
O17 - HKLM\System\CCS\Services\Tcpip\..\{7A439118-D15E-4368-ADC1-EAD546A3DCCA}: NameServer = 192.168.123.254




danke