Hilfe !!!!!
 

Brauche dringend Hilfe
Kommt immer wieder,denke von der Dos Ebne
Gruß Peter




Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:58:36, on 01.10.2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
I:\WINDOWS\System32\smss.exe
I:\WINDOWS\system32\winlogon.exe
I:\WINDOWS\system32\services.exe
I:\WINDOWS\system32\lsass.exe
I:\WINDOWS\system32\svchost.exe
I:\WINDOWS\System32\svchost.exe
I:\WINDOWS\system32\svchost.exe
I:\WINDOWS\system32\spoolsv.exe
I:\Programme\AntiVir PersonalEdition Classic\sched.exe
I:\Programme\AntiVir PersonalEdition Classic\avguard.exe
I:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
I:\Programme\Ashampoo\Ashampoo Magical Defrag\bin\aDefragService.exe
I:\Programme\Bonjour\mDNSResponder.exe
I:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe
I:\WINDOWS\System32\svchost.exe
I:\PROGRA~1\Ashampoo\ASHAMP~1\bin\DEFRAG~2.EXE
I:\WINDOWS\system32\nvsvc32.exe
I:\WINDOWS\System32\svchost.exe
I:\WINDOWS\system32\svchost.exe
I:\PROGRA~1\Ashampoo\ASHAMP~1\bin\defragActivityMonitor.exe
I:\WINDOWS\Explorer.EXE
I:\Programme\Microsoft IntelliPoint\ipoint.exe
I:\Programme\AntiVir PersonalEdition Classic\avgnt.exe
I:\WINDOWS\system32\RUNDLL32.EXE
I:\Programme\Microsoft IntelliType Pro\itype.exe
I:\WINDOWS\system32\rundll32.exe
I:\Programme\Spybot - Search & Destroy\TeaTimer.exe
I:\WINDOWS\system32\ctfmon.exe
I:\Programme\Ashampoo\Ashampoo Magical Defrag\bin\aDefragCtrl.exe
I:\Programme\Microsoft IntelliPoint\dpupdchk.exe
I:\Programme\Mozilla Firefox\firefox.exe
I:\Programme\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.de/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkId=54843
O2 - BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - I:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - I:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - I:\Programme\Java\jre1.6.0_07\bin\ssv.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE I:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [IntelliPoint] "I:\Programme\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [avgnt] "I:\Programme\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE I:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [itype] "I:\Programme\Microsoft IntelliType Pro\itype.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingC6658] cmd /c del "I:\WINDOWS\system32\psof1.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingA6238] command /c del "I:\WINDOWS\system32\psoft1.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingC8560] cmd /c del "I:\WINDOWS\system32\psoft1.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingA8203] command /c del "I:\WINDOWS\system32\regc64.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingC2577] cmd /c del "I:\WINDOWS\system32\regc64.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingA3659] command /c del "I:\WINDOWS\system32\regm64.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingC5988] cmd /c del "I:\WINDOWS\system32\regm64.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingA4767] command /c del "I:\WINDOWS\system32\Rundl1.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingC1762] cmd /c del "I:\WINDOWS\system32\Rundl1.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingA7063] command /c del "I:\WINDOWS\system32\sncntr.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingC1058] cmd /c del "I:\WINDOWS\system32\sncntr.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingA8560] command /c del "I:\WINDOWS\system32\ssurf022.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingC1597] cmd /c del "I:\WINDOWS\system32\ssurf022.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingA2176] command /c del "I:\WINDOWS\system32\ssvchost.com"
O4 - HKLM\..\RunOnce: [SpybotDeletingC2584] cmd /c del "I:\WINDOWS\system32\ssvchost.com"
O4 - HKLM\..\RunOnce: [SpybotDeletingA911] command /c del "I:\WINDOWS\system32\ssvchost.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingC7298] cmd /c del "I:\WINDOWS\system32\ssvchost.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] I:\Programme\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [ctfmon.exe] I:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\RunOnce: [SpybotDeletingB4369] command /c del "I:\WINDOWS\system32\hxiwlgpm.exe"
O4 - HKCU\..\RunOnce: [SpybotDeletingD9185] cmd /c del "I:\WINDOWS\system32\hxiwlgpm.exe"
O4 - HKCU\..\RunOnce: [SpybotDeletingB215] command /c del "I:\WINDOWS\system32\medup012.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingD1818] cmd /c del "I:\WINDOWS\system32\medup012.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingB9479] command /c del "I:\WINDOWS\system32\msgp.exe"
O4 - HKCU\..\RunOnce: [SpybotDeletingD2794] cmd /c del "I:\WINDOWS\system32\msgp.exe"
O4 - HKCU\..\RunOnce: [SpybotDeletingB579] command /c del "I:\WINDOWS\system32\msnbho.dll"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] I:\WINDOWS\system32\CTFMON.EXE (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] I:\WINDOWS\system32\CTFMON.EXE (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] I:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] I:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Ashampoo Magical Defrag.lnk = I:\Programme\Ashampoo\Ashampoo Magical Defrag\bin\aDefragCtrl.exe
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://I:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - I:\Programme\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - I:\Programme\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - I:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - I:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - I:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - I:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - I:\Programme\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/german/partner/de/kavwebscan_unicode.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1187903980578
O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/2.0.0.1/sysreqlab2.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1222726585203
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{AC893159-01F8-4037-A367-BA176E39F7BD}: NameServer = 217.237.149.142 217.237.150.205
O23 - Service: AntiVir PersonalEdition Classic Planer (AntiVirScheduler) - Avira GmbH - I:\Programme\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - I:\Programme\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - I:\Programme\Gemeinsame Dateien\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ashampoo Defrag Service (AshampooDefragService) - - I:\Programme\Ashampoo\Ashampoo Magical Defrag\bin\aDefragService.exe
O23 - Service: Bonjour-Dienst (Bonjour Service) - Apple Inc. - I:\Programme\Bonjour\mDNSResponder.exe
O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - I:\Programme\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - I:\Programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - I:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ServiceLayer - Nokia. - I:\Programme\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TuneUp Drive Defrag-Dienst (TuneUp.Defrag) - TuneUp Software GmbH - I:\WINDOWS\System32\TuneUpDefragService.exe

--
End of file - 9177 bytes