Trojaner-Board - Winfixer 2005 Problem !

Trojaner-Board (https://www.trojaner-board.de/)

- Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)

- - Winfixer 2005 Problem ! (https://www.trojaner-board.de/33870-winfixer-2005-problem.html)

Mon Nov 27 15:52:47 2006 => Scanning File C:\BlueByte\BBGC\Network.dll
Mon Nov 27 15:52:47 2006 => Scanning File C:\BlueByte\BBGC\NetworkWS.dll
Mon Nov 27 15:52:47 2006 => Scanning File C:\BlueByte\BBGC\readMe.txt
Mon Nov 27 15:52:47 2006 => Scanning File C:\BlueByte\BBGC\Resource.dll
Mon Nov 27 15:52:47 2006 => Scanning File C:\BlueByte\BBGC\Standard.dll
Mon Nov 27 15:52:47 2006 => Scanning File C:\BlueByte\BBGC\uninst.dll
Mon Nov 27 15:52:47 2006 => Scanning File C:\BlueByte\BBGC\uninst.ini
Mon Nov 27 15:52:47 2006 => Scanning File C:\BlueByte\BBGC\Update.ini
Mon Nov 27 15:52:47 2006 => Scanning Folder: C:\BlueByte\Die Siedler IV\*.*
Mon Nov 27 15:52:47 2006 => Scanning File C:\boot.ini
Mon Nov 27 15:52:47 2006 => Scanning File C:\bootfont.bin
Mon Nov 27 15:52:47 2006 => Scanning File C:\bootini.uns
Mon Nov 27 15:52:47 2006 => Scanning Folder: C:\computec\*.*
Mon Nov 27 15:52:47 2006 => Scanning File C:\computec\Detonatorunlock2.reg
Mon Nov 27 15:52:47 2006 => Scanning Folder: C:\Config.Msi\*.*
Mon Nov 27 15:52:47 2006 => Scanning File C:\CONFIG.SYS [**]
Mon Nov 27 15:52:47 2006 => Scanning File C:\DebugTrace-RockallDLL.log
Mon Nov 27 15:52:47 2006 => Scanning File C:\dirdat.txt
Mon Nov 27 15:52:47 2006 => Scanning Folder: C:\Dokumente und Einstellungen\*.*
Mon Nov 27 15:52:47 2006 => Scanning Folder: C:\Dokumente und Einstellungen\Soldier\*.*
Mon Nov 27 15:52:47 2006 => Scanning Folder: C:\Dokumente und Einstellungen\Soldier\Anwendungsdaten\*.*
Mon Nov 27 15:52:47 2006 => Scanning Folder: C:\Dokumente und Einstellungen\Soldier\Anwendungsdaten\Google\*.*
Mon Nov 27 15:52:47 2006 => Scanning Folder: C:\Dokumente und Einstellungen\Soldier\Anwendungsdaten\Google\GoogleEarth\*.*
Mon Nov 27 15:52:47 2006 => Scanning Folder: C:\Dokumente und Einstellungen\Soldier\Lokale Einstellungen\*.*
Mon Nov 27 15:52:47 2006 => Scanning Folder: C:\Dokumente und Einstellungen\Soldier\Lokale Einstellungen\Anwendungsdaten\*.*
Mon Nov 27 15:52:47 2006 => Scanning Folder: C:\Dokumente und Einstellungen\Soldier\Lokale Einstellungen\Anwendungsdaten\Google\*.*
Mon Nov 27 15:52:47 2006 => Scanning Folder: C:\Dokumente und Einstellungen\Soldier\Lokale Einstellungen\Anwendungsdaten\Google\GoogleEarth\*.*
Mon Nov 27 15:52:47 2006 => Scanning File C:\DownloadLog.txt
Mon Nov 27 15:52:47 2006 => Scanning Folder: C:\Downloads\*.*
Mon Nov 27 15:52:47 2006 => Scanning File C:\Downloads\197-www.torrent.to...HausWohnungundGarten2006[1].torrent
Mon Nov 27 15:52:47 2006 => Scanning File C:\Downloads\197-www.torrent.to...[TBox]_Atomix.Virtual.DJ.v3.2.Retail-TWK.3416208.TPB[1].torrent
Mon Nov 27 15:52:47 2006 => Scanning File C:\Downloads\2006-06-28_KingLui_vs_Dneed_(Round_2).zip
Mon Nov 27 15:52:47 2006 => Scanning File C:\Downloads\555-www.torrent.to...CannibalHolocaustbysaschaspeedyforwww[1][1].torrent-galaxy.to.rar[1].torrent
Mon Nov 27 15:52:47 2006 => Scanning File C:\Downloads\795969.1.jpg
Mon Nov 27 15:52:48 2006 => Scanning File C:\Downloads\796044.1.jpg
Mon Nov 27 15:52:48 2006 => Scanning File C:\Downloads\796272.1.jpg
Mon Nov 27 15:52:48 2006 => Scanning File C:\Downloads\796362.1.jpg
Mon Nov 27 15:52:48 2006 => Scanning File C:\Downloads\ABCIslandSetup.exe
Mon Nov 27 15:53:01 2006 => Scanning Folder: C:\Downloads\Adobe Photoshop CS2\*.*
Mon Nov 27 15:53:01 2006 => Scanning File C:\Downloads\Adobe Photoshop CS2\adobe.photoshop.cs.2.nfo
Mon Nov 27 15:53:01 2006 => Scanning File C:\Downloads\Adobe Photoshop CS2\adobe.photoshop.cs2.part01.rar
Mon Nov 27 15:53:03 2006 => Scanning File C:\Downloads\Adobe Photoshop CS2\adobe.photoshop.cs2.part02.rar
Mon Nov 27 15:53:03 2006 => Scanning File C:\Downloads\Adobe Photoshop CS2\adobe.photoshop.cs2.part03.rar
Mon Nov 27 15:53:03 2006 => Scanning File C:\Downloads\Adobe Photoshop CS2\adobe.photoshop.cs2.part04.rar
Mon Nov 27 15:53:03 2006 => Scanning File C:\Downloads\Adobe Photoshop CS2\adobe.photoshop.cs2.part05.rar
Mon Nov 27 15:53:04 2006 => Scanning File C:\Downloads\Adobe Photoshop CS2\adobe.photoshop.cs2.part06.rar
Mon Nov 27 15:53:04 2006 => Scanning File C:\Downloads\Adobe Photoshop CS2\adobe.photoshop.cs2.part07.rar
Mon Nov 27 15:53:04 2006 => Scanning File C:\Downloads\Adobe Photoshop CS2\adobe.photoshop.cs2.part08.rar
Mon Nov 27 15:53:04 2006 => Scanning File C:\Downloads\Adobe Photoshop CS2\adobe.photoshop.cs2.part09.rar
Mon Nov 27 15:53:04 2006 => Scanning File C:\Downloads\Adobe Photoshop CS2\adobe.photoshop.cs2.part10.rar
Mon Nov 27 15:53:04 2006 => Scanning File C:\Downloads\Adobe Photoshop CS2\adobe.photoshop.cs2.part11.rar
Mon Nov 27 15:53:04 2006 => Scanning File C:\Downloads\Adobe Photoshop CS2\adobe.photoshop.cs2.part12.rar
Mon Nov 27 15:53:04 2006 => Scanning File C:\Downloads\Adobe Photoshop CS2\adobe.photoshop.cs2.part13.rar
Mon Nov 27 15:53:04 2006 => Scanning File C:\Downloads\Adobe Photoshop CS2\adobe.photoshop.cs2.part14.rar
Mon Nov 27 15:53:04 2006 => Scanning File C:\Downloads\Adobe Photoshop CS2\adobe.photoshop.cs2.part15.rar
Mon Nov 27 15:53:04 2006 => Scanning File C:\Downloads\Adobe Photoshop CS2\adobe.photoshop.cs2.part16.rar
Mon Nov 27 15:53:04 2006 => Scanning File C:\Downloads\Adobe Photoshop CS2\adobe.photoshop.cs2.part17.rar
Mon Nov 27 15:53:04 2006 => Scanning File C:\Downloads\Adobe Photoshop CS2\adobe.photoshop.cs2.part18.rar
Mon Nov 27 15:53:04 2006 => Scanning File C:\Downloads\Adobe Photoshop CS2\adobe.photoshop.cs2.part19.rar
Mon Nov 27 15:53:04 2006 => Scanning File C:\Downloads\Adobe Photoshop CS2\adobe.photoshop.cs2.part20.rar
Mon Nov 27 15:53:04 2006 => Scanning Folder: C:\Downloads\Bumfights\*.*
Mon Nov 27 15:53:04 2006 => Scanning Folder: C:\Downloads\Bumfights\AudioMixing\*.*
Mon Nov 27 15:53:04 2006 => Scanning File C:\Downloads\Bumfights\AudioMixing.tlam
Mon Nov 27 15:53:04 2006 => Scanning File C:\Downloads\Bumfights\Bumfights.vep
Mon Nov 27 15:53:04 2006 => Scanning File C:\Downloads\Bumfights\Collections.vec
Mon Nov 27 15:53:04 2006 => Scanning Folder: C:\Downloads\Bumfights\DVDMenu\*.*
Mon Nov 27 15:53:04 2006 => Scanning Folder: C:\Downloads\Bumfights\DVDMenu\CurrentMenu\*.*
Mon Nov 27 15:53:04 2006 => Scanning File C:\Downloads\Bumfights\DVDMenu\CurrentMenu\config.xml
Mon Nov 27 15:53:04 2006 => Scanning Folder: C:\Downloads\Bumfights\VideoEffects\*.*
Mon Nov 27 15:53:04 2006 => Scanning File C:\Downloads\Bumfights\VideoEffects.tlve
Mon Nov 27 15:53:04 2006 => Scanning Folder: C:\Downloads\Bumfights\VideoOverlay\*.*
Mon Nov 27 15:53:04 2006 => Scanning File C:\Downloads\Bumfights\VideoOverlay.tlvo
Mon Nov 27 15:53:04 2006 => Scanning File C:\Downloads\Bumfights BumPatrol.avi
Mon Nov 27 15:53:04 2006 => Scanning File C:\Downloads\Bumfights.avi
Mon Nov 27 15:53:04 2006 => Scanning File C:\Downloads\Bumfights2 kampf1.avi
Mon Nov 27 15:53:05 2006 => Scanning File C:\Downloads\CaillouKinderGartenSetup.exe
Mon Nov 27 15:53:05 2006 => Scanning File C:\Downloads\Dark_Messiah_Demo.zip
Mon Nov 27 15:59:09 2006 => Scanning File C:\Downloads\Die Ritter der Kokusnuss shared for [www.torrent.to].rar
Mon Nov 27 15:59:10 2006 => Result: ERROR!!! File C:\Downloads\Die Ritter der Kokusnuss shared for [www.torrent.to].rar: Scanning Failure!!!
Mon Nov 27 15:59:10 2006 => ERROR!!! ScanFile fails for C:\Downloads\Die Ritter der Kokusnuss shared for [www.torrent.to].rar
Mon Nov 27 15:59:10 2006 => Scanning File C:\Downloads\Die Ritter der Kokusnuss.avi
Mon Nov 27 15:59:10 2006 => Scanning File C:\Downloads\Everest Poker.net.exe
Mon Nov 27 15:59:11 2006 => File C:\Downloads\Everest Poker.net.exe tagged as "not-a-virus:AdWare.Win32.Casino.t". Action Taken: No Action Taken.

Mon Nov 27 15:59:11 2006 => Scanning File C:\Downloads\Flip_Words-Setup.exe
Mon Nov 27 15:59:12 2006 => Scanning Folder: C:\Downloads\HP_und _der_Gefangene_von_Askaban\*.*
Mon Nov 27 15:59:12 2006 => Scanning Folder: C:\Downloads\HP_und _der_Gefangene_von_Askaban\VIDEO_TS\*.*
Mon Nov 27 15:59:12 2006 => Scanning File C:\Downloads\HP_und _der_Gefangene_von_Askaban\VIDEO_TS\VIDEO_TS.BUP
Mon Nov 27 15:59:12 2006 => Scanning File C:\Downloads\HP_und _der_Gefangene_von_Askaban\VIDEO_TS\VIDEO_TS.IFO
Mon Nov 27 15:59:12 2006 => Scanning File C:\Downloads\HP_und _der_Gefangene_von_Askaban\VIDEO_TS\VIDEO_TS.VOB
Mon Nov 27 15:59:12 2006 => Scanning File C:\Downloads\HP_und _der_Gefangene_von_Askaban\VIDEO_TS\VTS_01_0.BUP
Mon Nov 27 15:59:13 2006 => Scanning File C:\Downloads\HP_und _der_Gefangene_von_Askaban\VIDEO_TS\VTS_01_0.IFO
Mon Nov 27 15:59:13 2006 => Scanning File C:\Downloads\HP_und _der_Gefangene_von_Askaban\VIDEO_TS\VTS_01_0.VOB
Mon Nov 27 15:59:13 2006 => Scanning File C:\Downloads\HP_und _der_Gefangene_von_Askaban\VIDEO_TS\VTS_01_1.VOB
Mon Nov 27 15:59:13 2006 => Scanning File C:\Downloads\HP_und _der_Gefangene_von_Askaban\VIDEO_TS\VTS_01_2.VOB
Mon Nov 27 15:59:13 2006 => Scanning File C:\Downloads\HP_und _der_Gefangene_von_Askaban\VIDEO_TS\VTS_01_3.VOB
Mon Nov 27 15:59:13 2006 => Scanning File C:\Downloads\HP_und _der_Gefangene_von_Askaban\VIDEO_TS\VTS_01_4.VOB
Mon Nov 27 15:59:13 2006 => Scanning File C:\Downloads\HP_und _der_Gefangene_von_Askaban\VIDEO_TS\VTS_01_5.VOB
Mon Nov 27 15:59:13 2006 => Scanning File C:\Downloads\HP_und _der_Gefangene_von_Askaban\VIDEO_TS\VTS_02_0.BUP
Mon Nov 27 15:59:14 2006 => Scanning File C:\Downloads\HP_und _der_Gefangene_von_Askaban\VIDEO_TS\VTS_02_0.IFO
Mon Nov 27 15:59:14 2006 => Scanning File C:\Downloads\HP_und _der_Gefangene_von_Askaban\VIDEO_TS\VTS_02_1.VOB
Mon Nov 27 15:59:14 2006 => Scanning File C:\Downloads\id-blutelfen_startgebiet_video_172935.htm
Mon Nov 27 15:59:14 2006 => Scanning File C:\Downloads\insomniax-recompilation-18-11202.zip
Mon Nov 27 15:59:34 2006 => Scanning File C:\Downloads\IUpdate
Mon Nov 27 15:59:34 2006 => Scanning File C:\Downloads\KudosSetup.exe
Mon Nov 27 15:59:45 2006 => Scanning File C:\Downloads\lib4.dat
Mon Nov 27 15:59:45 2006 => Scanning File C:\Downloads\settings.dat
Mon Nov 27 15:59:45 2006 => Scanning File C:\Downloads\SetupKitchen_V2007_1.exe
Mon Nov 27 15:59:46 2006 => Scanning File C:\Downloads\Setup_dr_183-184.exe
Mon Nov 27 15:59:46 2006 => Scanning File C:\Downloads\SilkroadOnlinevGlobalOfficial_v1.02.exe
Mon Nov 27 16:19:14 2006 => Scanning File C:\Downloads\titan_quest_demo.zip
Mon Nov 27 16:32:09 2006 => Scanning File C:\Downloads\UBB.presents.A.Tale.of.two.Sisters.German.RATDVD-UBB.rar
Mon Nov 27 16:32:10 2006 => Scanning File C:\Downloads\WaterBugs_Setup.exe
Mon Nov 27 16:32:17 2006 => Scanning File C:\Downloads\WinMX.exe
Mon Nov 27 16:32:18 2006 => Scanning File C:\Downloads\winmx354beta4.zip
Mon Nov 27 16:32:19 2006 => Scanning Folder: C:\Downloads\www.bitreactor.to_Haus.Wohnung.und.Garten.2006.German-MooBS\*.*
Mon Nov 27 16:32:19 2006 => Scanning File C:\Downloads\www.bitreactor.to_Haus.Wohnung.und.Garten.2006.German-MooBS\hawoga2006.part01.rar
Mon Nov 27 16:47:52 2006 => Please Wait Exiting Application...

Hallo.

Ich muss dich leider auch nochmal daraufhinweisen, das du die Beiträge besser bzw. aufmersamer lesen sollst/musst. Sonst wird es mit der Ferndiagnose schwierig. ;)

1.) Wo ist der Report von SmitfraudFix?

Zitat:

Zitat von Sunny

Starte es, und nutze gleich die Option "2".
Lass das Programm arbeiten, wenn es fertig ist, kopiere den Inhalt der erstellten Report.txt hier in einen Beitrag.

2.) Du sollst die Datei -> E:\WINDOWS\system32\khfdd.dll mit der Killbox löschen, klicke aber vorher auf die Option "delete on reboot".
Dann wirst du gefragt ob du das System neu starten willst, klicke auf "NO". Suche nun diese Datei -> E:\WINDOWS\system32\fsosvecg.dll (diese ist neu!)
Nun wirst du wieder gefragt wegen einem Neustart, klicke jetzt auf "Yes". (das System bootet neu!)
Danach den Ordner C:\Killbox! löschen!!!

3.) Die Anleitung zu eScan nochmals lesen, und den letzten Teil hiervon genau beachten!

Zitat:

[5] Rechtsklick auf die Find.zip -> Ziel speichern unter… z.B. 'C:\Find.zip' -> 'Find.zip' entpacken z.B. 'C:\Find.bat' -> 'Find.bat' doppelklicken und den Scan abwarten -> den Inhalt [6] der automatisch erstellten 'C:\eScan_neu.txt' posten.

Gruß
Sunny

SmitFraudFix Log:

SmitFraudFix v2.124

Scan done at 17:38:52,93, 27.11.2006
Run from E:\Dokumente und Einstellungen\Soldier\Desktop\SmitfraudFix
OS: Microsoft Windows XP [Version 5.1.2600] - Windows_NT
Fix run in normal mode

»»»»»»»»»»»»»»»»»»»»»»»» Before SmitFraudFix
!!!Attention, following keys are not inevitably infected!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Killing process

»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

GenericRenosFix by S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» Deleting infected files

»»»»»»»»»»»»»»»»»»»»»»»» Deleting Temp Files

»»»»»»»»»»»»»»»»»»»»»»»» Registry Cleaning

Registry Cleaning done.

»»»»»»»»»»»»»»»»»»»»»»»» After SmitFraudFix
!!!Attention, following keys are not inevitably infected!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» End

Andere Logs Folgen!!

Hier die Log nun endlich von escan, man das dauerte!

Aber ein Problem hab ich dabei, er hällt immer in Mitte des Scanns an! immer bei so ca. 19450 Dateien, auch selbst wenn ich die datei wo er hängen bliebt gelöscht habe :(

Sagtmal gibt es kein Anderes Programm dafür??? bin schon seit 4 stunden nur am scannen mit escan... Das mi der find.bat etc. bekomm ich ja alles gut hin aber das hängen bleiben nerft echt!!

Hoffe um eine Alternative dazu!!

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Infektionsmeldungen
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~
Dateien
~~~~~~~~~~~
~~~~ Infected files
~~~~~~~~~~~
~~~~~~~~~~~
~~~~ Offending files
~~~~~~~~~~~
~~~~~~~~~~~
~~~~ Tagged files
~~~~~~~~~~~
Mon Nov 27 15:59:11 2006 => File C:\Downloads\Everest Poker.net.exe tagged as "not-a-virus:AdWare.Win32.Casino.t". Action Taken: No Action Taken.
Mon Nov 27 17:54:17 2006 => File C:\Downloads\Everest Poker.net.exe tagged as "not-a-virus:AdWare.Win32.Casino.t". Action Taken: No Action Taken.
Mon Nov 27 18:26:19 2006 => File C:\Downloads\Everest Poker.net.exe tagged as "not-a-virus:AdWare.Win32.Casino.t". Action Taken: No Action Taken.
Mon Nov 27 18:58:08 2006 => File C:\Downloads\Everest Poker.net.exe tagged as "not-a-virus:AdWare.Win32.Casino.t". Action Taken: No Action Taken.
~~~~~~~~~~~
Ordner
~~~~~~~~~~~
~~~~~~~~~~~
Registry
~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Statistiken:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Mon Nov 27 16:48:22 2006 => Total Errors: 4
Mon Nov 27 18:15:16 2006 => Total Errors: 5
Mon Nov 27 18:38:01 2006 => Total Errors: 5
Mon Nov 27 19:08:05 2006 => Total Errors: 5
Mon Nov 27 16:48:22 2006 => Time Elapsed: 00:56:20
Mon Nov 27 18:15:16 2006 => Time Elapsed: 00:27:18
Mon Nov 27 18:38:01 2006 => Time Elapsed: 00:15:44
Mon Nov 27 19:08:05 2006 => Time Elapsed: 00:10:03
Mon Nov 27 16:48:22 2006 => Total Objects Scanned: 19463
Mon Nov 27 18:15:16 2006 => Total Objects Scanned: 19452
Mon Nov 27 18:38:01 2006 => Total Objects Scanned: 19475
Mon Nov 27 19:08:05 2006 => Total Objects Scanned: 19471
Mon Nov 27 15:50:10 2006 => Virus Database Date: 11/27/2006
Mon Nov 27 15:50:46 2006 => Virus Database Date: 11/27/2006
Mon Nov 27 16:48:23 2006 => Virus Database Date: 11/27/2006
Mon Nov 27 17:18:08 2006 => Virus Database Date: 11/27/2006
Mon Nov 27 17:44:58 2006 => Virus Database Date: 11/27/2006
Mon Nov 27 18:15:16 2006 => Virus Database Date: 11/27/2006
Mon Nov 27 18:38:01 2006 => Virus Database Date: 11/27/2006
Mon Nov 27 18:52:46 2006 => Virus Database Date: 11/27/2006
Mon Nov 27 19:08:05 2006 => Virus Database Date: 11/27/2006
Mon Nov 27 19:08:07 2006 => Virus Database Date: 11/27/2006
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

mwav.log:

Mon Nov 27 18:58:08 2006 => File C:\Downloads\Everest Poker.net.exe tagged as "not-a-virus:AdWare.Win32.Casino.t". Action Taken: No Action Taken.

Mon Nov 27 18:26:19 2006 => File C:\Downloads\Everest Poker.net.exe tagged as "not-a-virus:AdWare.Win32.Casino.t". Action Taken: No Action Taken.

Mon Nov 27 17:54:17 2006 => File C:\Downloads\Everest Poker.net.exe tagged as "not-a-virus:AdWare.Win32.Casino.t". Action Taken: No Action Taken.

Mon Nov 27 15:59:11 2006 => File C:\Downloads\Everest Poker.net.exe tagged as "not-a-virus:AdWare.Win32.Casino.t". Action Taken: No Action Taken.

Neue HJT Log nu noch!

Logfile of HijackThis v1.99.1
Scan saved at 19:15:46, on 27.11.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\system32\spoolsv.exe
E:\WINDOWS\system32\cisvc.exe
E:\WINDOWS\system32\nvsvc32.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\system32\RUNDLL32.EXE
E:\WINDOWS\system32\ctfmon.exe
E:\WINDOWS\system32\cidaemon.exe
E:\WINDOWS\explorer.exe
C:\Programme\Mozilla Firefox\firefox.exe
C:\Programme\HiJackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - E:\Programme\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &VSAdd-in - {74DD705D-6834-439C-A735-A6DBE2677452} - E:\Programme\VSAdd-in\VSAdd-in.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE E:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE E:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [LXCCCATS] rundll32 E:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCCtime.dll,_RunDLLEntry@16
O4 - HKCU\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\ctfmon.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - E:\Programme\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - E:\Programme\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - E:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - E:\Programme\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - E:\Programme\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\WINDOWS\system32\shdocvw.dll
O20 - AppInit_DLLs: "E:\PROGRA~1\Google\Google Desktop Search\GoogleDesktopNetwork3.dll"
O23 - Service: lxcc_device - Lexmark International, Inc. - E:\WINDOWS\system32\lxcccoms.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - E:\WINDOWS\system32\nvsvc32.exe

Grüße