Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   hpodvd09.log was ist das??? (https://www.trojaner-board.de/44405-hpodvd09-log.html)

dubli 08.10.2007 20:56

hpodvd09.log was ist das???
 
Hallo,
habe mir wohl etwas eingefangen

hpodvd09.log :confused:

kann ich nicht löschen und nerft
kann mir einer helfen??

Logfile of HijackThis v1.99.1
Scan saved at 21:45:58, on 08.10.2007
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe
C:\Programme\Norton Internet Security\NISUM.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe
C:\Programme\HP\HP Software Update\HPWuSchd2.exe
C:\PROGRA~1\SSS\SIMPLESCREENSHOT.EXE
C:\Programme\Java\jre1.6.0_02\bin\jusched.exe
C:\Programme\Adobe\Acrobat 6.0\Distillr\acrotray.exe
C:\Programme\HP\Digital Imaging\bin\hpqtra08.exe
C:\Programme\Norton Internet Security\ccPxySvc.exe
C:\Programme\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Programme\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Programme\Lavasoft\Ad-Aware SE Professional\Ad-Watch.exe
D:\Programme\emule\emule.exe
C:\Programme\Mozilla Firefox\firefox.exe
C:\Programme\Adobe\Reader 8.0\Reader\AcroRd32.exe
C:\Programme\HiJackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = h**p://web.de/
O1 - Hosts: 4.50.177.46 symantec.comsecurityresponse.symantec.com
O1 - Hosts: 87.99.114.62 www.symantec.comsecurityresponse.symantec.com
O1 - Hosts: 64.154.58.213 pandasoftware.com
O1 - Hosts: 192.114.49.174 www.pandasoftware.com
O1 - Hosts: 207.50.240.90 sophos.com
O1 - Hosts: 233.162.226.122 www.sophos.com
O1 - Hosts: 201.29.240.49 mcafee.com
O1 - Hosts: 117.232.93.217 www.mcafee.com
O1 - Hosts: 122.194.238.245 downloads-us1.kaspersky-labs.com
O1 - Hosts: 121.188.79.103 www.downloads-us1.kaspersky-labs.com
O1 - Hosts: 226.75.178.228 updates1.kaspersky-labs.com
O1 - Hosts: 0.156.185.164 www.updates1.kaspersky-labs.com
O1 - Hosts: 54.39.150.94 updates2.kaspersky-labs.com
O1 - Hosts: 136.135.113.115 www.updates2.kaspersky-labs.com
O1 - Hosts: 92.137.9.106 updates3.kaspersky-labs.com
O1 - Hosts: 130.131.159.156 www.updates3.kaspersky-labs.com
O1 - Hosts: 115.231.16.48 updates4.kaspersky-labs.com
O1 - Hosts: 214.23.65.74 www.updates4.kaspersky-labs.com
O1 - Hosts: 73.123.191.128 updates5.kaspersky-labs.com
O1 - Hosts: 93.210.167.142 www.updates5.kaspersky-labs.com
O1 - Hosts: 226.197.196.74 downloads1.kaspersky-labs.com
O1 - Hosts: 102.194.248.218 www.downloads1.kaspersky-labs.com
O1 - Hosts: 248.7.221.36 downloads2.kaspersky-labs.com
O1 - Hosts: 50.253.171.134 www.downloads2.kaspersky-labs.com
O1 - Hosts: 118.200.93.199 downloads3.kaspersky-labs.com
O1 - Hosts: 119.28.15.78 www.downloads3.kaspersky-labs.com
O1 - Hosts: 251.82.171.146 downloads4.kaspersky-labs.com
O1 - Hosts: 224.187.196.210 www.downloads4.kaspersky-labs.com
O1 - Hosts: 93.52.194.6 downloads5.kaspersky-labs.com
O1 - Hosts: 139.250.64.21 www.downloads5.kaspersky-labs.com
O1 - Hosts: 36.192.178.72 ftp.downloads1.kaspersky-labs.com
O1 - Hosts: 138.255.75.255 www.ftp.downloads1.kaspersky-labs.com
O1 - Hosts: 11.142.30.163 ftp.downloads2.kaspersky-labs.com
O1 - Hosts: 99.114.131.219 www.ftp.downloads2.kaspersky-labs.com
O1 - Hosts: 130.247.188.3 ftp.downloads3.kaspersky-labs.com
O1 - Hosts: 144.0.216.218 www.ftp.downloads3.kaspersky-labs.com
O1 - Hosts: 47.155.216.122 ftp.downloads4.kaspersky-labs.com
O1 - Hosts: 0.216.17.142 www.ftp.downloads4.kaspersky-labs.com
O1 - Hosts: 104.220.209.191 ftp.downloads5.kaspersky-labs.com
O1 - Hosts: 148.49.69.111 www.ftp.downloads5.kaspersky-labs.com
O1 - Hosts: 186.96.154.170 dnl-us3.kaspersky-labs.com
O1 - Hosts: 162.194.99.89 www.dnl-us3.kaspersky-labs.com
O1 - Hosts: 102.147.59.185 dnl-us4.kaspersky-labs.com
O1 - Hosts: 118.72.171.12 www.dnl-us4.kaspersky-labs.com
O1 - Hosts: 222.34.78.143 dnl-us5.kaspersky-labs.com
O1 - Hosts: 204.4.50.171 www.dnl-us5.kaspersky-labs.com
O1 - Hosts: 76.130.130.111 dnl-us6.kaspersky-labs.com
O1 - Hosts: 87.58.98.62 www.dnl-us6.kaspersky-labs.com
O1 - Hosts: 12.103.27.197 dnl-us7.kaspersky-labs.com
O1 - Hosts: 61.179.120.48 www.dnl-us7.kaspersky-labs.com
O1 - Hosts: 45.77.112.158 dnl-us8.kaspersky-labs.com
O1 - Hosts: 152.60.4.210 www.dnl-us8.kaspersky-labs.com
O1 - Hosts: 244.243.107.43 kaspersky.ru
O1 - Hosts: 247.37.109.214 www.kaspersky.ru
O1 - Hosts: 89.218.13.66 msk1.drweb.com
O1 - Hosts: 219.195.106.212 www.msk1.drweb.com
O1 - Hosts: 136.202.231.221 msk2.drweb.com
O1 - Hosts: 59.238.138.201 www.msk2.drweb.com
O1 - Hosts: 97.78.162.153 msk3.drweb.com
O1 - Hosts: 0.131.173.147 www.msk3.drweb.com
O1 - Hosts: 249.51.120.55 msk4.drweb.com
O1 - Hosts: 138.227.136.118 www.msk4.drweb.com
O1 - Hosts: 22.13.185.31 boss.drweb.comdrweb.com
O1 - Hosts: 41.115.37.154 www.boss.drweb.comdrweb.com
O1 - Hosts: 183.178.71.216 liveupdate.symantecliveupdate.com
O1 - Hosts: 164.26.97.138 www.liveupdate.symantecliveupdate.com
O1 - Hosts: 137.189.26.145 viruslist.com
O1 - Hosts: 182.198.108.182 www.viruslist.com
O1 - Hosts: 115.13.189.156 security.symantec.com
O1 - Hosts: 140.232.76.242 www.security.symantec.com
O1 - Hosts: 12.67.207.237 f-secure.com
O1 - Hosts: 72.243.91.246 www.f-secure.com
O1 - Hosts: 31.71.131.160 kaspersky-labs.com
O1 - Hosts: 129.224.196.220 www.kaspersky-labs.com
O1 - Hosts: 46.195.33.112 kaspersky.com
O1 - Hosts: 192.173.10.165 www.kaspersky.com
O1 - Hosts: 236.167.130.64 avp.com
O1 - Hosts: 5.217.129.180 www.avp.com
O1 - Hosts: 193.163.151.150 norman.com
O1 - Hosts: 64.234.211.81 www.norman.com
O1 - Hosts: 74.176.227.27 sandbox.norman.com
O1 - Hosts: 217.232.124.40 www.sandbox.norman.com
O1 - Hosts: 215.136.253.29 networkassociates.com
O1 - Hosts: 40.223.79.199 www.networkassociates.com
O1 - Hosts: 235.41.15.13 ca.com
O1 - Hosts: 253.97.239.35 www.ca.com
O1 - Hosts: 191.86.89.1 mast.mcafee.com
O1 - Hosts: 26.1.86.20 www.mast.mcafee.com
O1 - Hosts: 192.22.175.51 my-etrust.com
O1 - Hosts: 180.217.82.212 www.my-etrust.com
O1 - Hosts: 12.51.246.128 download.mcafee.com
O1 - Hosts: 246.5.2.132 www.download.mcafee.com
O1 - Hosts: 249.188.171.234 dispatch.mcafee.com
O1 - Hosts: 125.38.93.167 www.dispatch.mcafee.com
O1 - Hosts: 142.132.93.22 secure.nai.com
O1 - Hosts: 221.224.172.165 www.secure.nai.com
O1 - Hosts: 7.160.46.207 nai.com
O1 - Hosts: 26.92.11.74 www.nai.com
O1 - Hosts: 86.237.86.129 update.symantec.com
O1 - Hosts: 48.198.237.68 www.update.symantec.com
O1 - Hosts: 157.136.160.190 updates.symantec.com
O2 - BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Gemeinsame Dateien\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Programme\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Programme\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Programme\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programme\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Programme\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ccApp] C:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe
O4 - HKLM\..\Run: [ccRegVfy] C:\Programme\Gemeinsame Dateien\Symantec Shared\ccRegVfy.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Programme\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [SimpleScreenshot] C:\PROGRA~1\SSS\SIMPLESCREENSHOT.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programme\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programme\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\RunOnce: [Services Start2] odcwinst.exe
O4 - Global Startup: Acrobat Assistant.lnk = C:\Programme\Adobe\Acrobat 6.0\Distillr\acrotray.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Programme\Gemeinsame Dateien\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Programme\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Programme\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Klicke hier um das Projekt xp-AntiSpy zu unterstützen - {9307DF3D-CF42-4AF2-A3A8-29E7610A0F6F} - C:\Programme\xp-AntiSpy\sponsoring\sponsor.html (HKCU)
O9 - Extra 'Tools' menuitem: Unterstützung für xp-AntiSpy - {9307DF3D-CF42-4AF2-A3A8-29E7610A0F6F} - C:\Programme\xp-AntiSpy\sponsoring\sponsor.html (HKCU)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\GEMEIN~1\Skype\SKYPE4~1.DLL
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation Service (ccPwdSvc) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Proxy Service (ccPxySvc) - Symantec Corporation - C:\Programme\Norton Internet Security\ccPxySvc.exe
O23 - Service: Norton AntiVirus Auto-Protect-Dienst (navapsvc) - Symantec Corporation - C:\Programme\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Internet Security Accounts Manager (NISUM) - Symantec Corporation - C:\Programme\Norton Internet Security\NISUM.EXE
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\GEMEIN~1\SYMANT~1\SCRIPT~1\SBServ.exe

nochdigger 08.10.2007 21:19

Hallo

Herzlichen Glückwunsch es ist ne Neuinstallation :aplaus:
Grund 1
Zitat:

Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Dein System hat noch nie auch nur ein Update gesehen, trenne deinen Rechner, um weiteren Schaden an deinem und anderen Rechnern zu vermeiden, vom Netz
Grund 2
Zitat:

Worm/Skipi.C - Vollständig (und evtl. noch mehr)
und setze dein System nach dieser Anleitung --> Neuaufsetzen des Systems und anschliessende Absicherung! neu auf.
Ändere nach der Neuinstallation alle deine Pass- und Kennwörter.

MFG


Alle Zeitangaben in WEZ +1. Es ist jetzt 20:40 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19