Windows eplorer wurde aus sicherheitsgründen geschlossen |
||
---|---|---|
#0
| ||
08.07.2008, 15:14
...neu hier
Beiträge: 6 |
||
|
||
08.07.2008, 17:28
Ehrenmitglied
Beiträge: 29434 |
#2
Hallo, sande
« lade als Zweitbrowser den Firefox http://virus-protect.org/firefox.html « mit dem HijackThis löschen ("fixen") Klicke: "Do a system scan only" Setze ein Häckchen in das Kästchen vor den genannten Eintrag und wähle fix checked. + starte den Rechner neu. Zitat O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (file missing)« wende cleaner an + lösche die temp-Dateien http://www.ccleaner.de/?protecus.de « wende dialfix an - poste dann hier den report http://virus-protect.org/artikel/tools/dial_a_fix.html « wende combofix an , warnmeldung wegklicken + poste hier den report http://virus-protect.org/artikel/tools/combofix.html __________ MfG Sabina rund um die PC-Sicherheit |
|
|
||
08.07.2008, 18:30
...neu hier
Themenstarter Beiträge: 6 |
#3
hier der log von combo fix
ComboFix 08-07-07.3 - PC 2008-07-08 18:11:30.2 - NTFSx86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1031.18.203 [GMT 2:00] ausgeführt von:: C:\Dokumente und Einstellungen\Marc&Martin\Desktop\ComboFix.exe * Neuer Wiederherstellungspunkt wurde erstellt . ((((((((((((((((((((((( Dateien erstellt von 2008-06-08 bis 2008-07-08 )))))))))))))))))))))))))))))) . 2008-07-08 18:06 . 2008-07-08 18:09 <DIR> d-------- C:\WINDOWS\system32\CatRoot2 2008-07-08 14:13 . 2008-07-08 14:32 <DIR> d-------- C:\Dokumente und Einstellungen\Marc&Martin\Anwendungsdaten\vlc 2008-07-05 11:03 . 2008-07-05 11:03 <DIR> d-------- C:\Programme\Gameforge4D 2008-07-05 11:03 . 2004-05-10 13:14 118,272 --a------ C:\WINDOWS\system32\SX5363S.DLL 2008-07-05 11:03 . 2004-05-10 13:14 102,400 --a------ C:\WINDOWS\system32\RV32RTP.dll 2008-07-05 11:03 . 2004-05-10 13:15 40 --a------ C:\WINDOWS\system32\Sx5363.ini 2008-07-05 02:04 . 2008-07-05 02:04 <DIR> d-------- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\SlySoft 2008-07-05 01:59 . 2008-07-05 01:59 <DIR> d-------- C:\Programme\SlySoft 2008-07-05 01:59 . 2008-07-05 02:04 24 ---hs---- C:\WINDOWS\SFEBA570A.tmp 2008-07-03 13:37 . 2008-07-03 13:37 <DIR> d-------- C:\Programme\Nuclear Coffee 2008-07-03 13:08 . 2008-07-03 13:08 <DIR> d-------- C:\Dokumente und Einstellungen\Marc&Martin\Anwendungsdaten\DivX 2008-06-27 20:14 . 2008-06-27 20:15 <DIR> d-------- C:\Programme\DivX 2008-06-27 20:09 . 2008-06-27 20:09 <DIR> d-------- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Yahoo! Companion 2008-06-27 17:21 . 2008-06-27 17:21 <DIR> d-------- C:\Programme\Apple Software Update 2008-06-26 18:17 . 2008-06-26 18:17 <DIR> d-------- C:\Programme\Yahoo! 2008-06-21 21:45 . 2008-06-21 21:45 <DIR> d-------- C:\Programme\Bonjour 2008-06-21 09:20 . 2008-07-06 20:12 <DIR> d-------- C:\Programme\Jets'n'Guns GOLD 2008-06-18 17:59 . 2008-06-18 17:59 <DIR> d-------- C:\Programme\Gemeinsame Dateien\Scanner 2008-06-17 15:59 . 2008-06-17 15:59 99,648 --a------ C:\WINDOWS\system32\drivers\AnyDVD.sys 2008-06-16 21:44 . 2008-06-16 21:44 <DIR> d-------- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Macrium 2008-06-13 20:32 . 2008-06-13 20:32 <DIR> d-------- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Absolutist 2008-06-13 17:51 . 2008-06-13 17:52 <DIR> d-------- C:\WINDOWS\system32\NtmsData 2008-06-11 16:07 . 2008-05-08 16:02 203,136 --------- C:\WINDOWS\system32\dllcache\rmcast.sys 2008-06-11 15:08 . 2008-06-14 19:32 273,024 --------- C:\WINDOWS\system32\dllcache\bthport.sys 2008-06-10 18:30 . 2008-06-10 18:34 740 --a------ C:\WINDOWS\wininit.ini 2008-06-10 16:35 . 2008-06-10 22:21 <DIR> d-------- C:\Programme\Spybot - Search & Destroy 2008-06-10 16:35 . 2008-06-10 20:37 <DIR> d-------- C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Spybot - Search & Destroy 2008-06-10 16:24 . 2008-06-10 18:34 <DIR> d-------- C:\Dokumente und Einstellungen\Marc&Martin\Anwendungsdaten\SpywareRemover . (((((((((((((((((((((((((((((((((((( Find3M Bericht )))))))))))))))))))))))))))))))))))))))))))))))))))))) . 2008-07-08 16:06 --------- d-----w C:\Dokumente und Einstellungen\Marc&Martin\Anwendungsdaten\Free Download Manager 2008-07-08 14:34 --------- d-----w C:\Programme\Mozilla Firefox 3 Beta 5 2008-07-06 18:16 --------- d-----w C:\Programme\Windows Live 2008-07-06 18:09 --------- d-----w C:\Programme\Image Mender 2008-07-06 18:08 --------- d-----w C:\Programme\File Renamer Deluxe 2008-07-06 18:08 --------- d-----w C:\Dokumente und Einstellungen\Marc&Martin\Anwendungsdaten\DemoCreator 2008-07-06 18:07 --------- d-----w C:\Programme\Captain Tray Pro 2008-07-06 14:38 --------- d-----w C:\Dokumente und Einstellungen\Marc&Martin\Anwendungsdaten\SolidDocuments 2008-07-06 12:35 --------- d-----w C:\Programme\BitDefender10 2008-07-03 12:37 --------- d-----w C:\Programme\Gemeinsame Dateien\Softwin 2008-06-30 17:30 --------- d-----w C:\Programme\TV-Browser 2008-06-21 19:46 --------- d-----w C:\Dokumente und Einstellungen\Marc&Martin\Anwendungsdaten\Apple Computer 2008-06-21 19:46 --------- d-----w C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Apple Computer 2008-06-21 19:45 --------- d-----w C:\Programme\QuickTime 2008-06-17 15:37 --------- d-----w C:\Programme\Metin2_Germany 2008-06-14 17:32 273,024 ------w C:\WINDOWS\system32\drivers\bthport.sys 2008-06-10 18:43 --------- d-----w C:\Programme\Surfer 2008-06-10 16:30 --------- d-----w C:\Programme\AdVantage 2008-06-07 21:53 --------- d-----w C:\Dokumente und Einstellungen\Marc&Martin\Anwendungsdaten\FLV Extract 2008-06-07 18:23 --------- d-----w C:\Dokumente und Einstellungen\Marc&Martin\Anwendungsdaten\Tobit 2008-06-07 18:09 --------- d-----w C:\Programme\Tobit ClipInc 2008-06-07 18:09 --------- d-----w C:\Programme\Gemeinsame Dateien\Tobit 2008-06-07 16:48 --------- d-----w C:\Programme\Zattoo 2008-06-07 11:36 --------- d-----w C:\Dokumente und Einstellungen\Marc&Martin\Anwendungsdaten\gtk-2.0 2008-06-07 11:35 --------- d-----w C:\Programme\Avidemux 2.4 2008-06-07 10:21 --------- d-----w C:\Programme\RobotKarol 2008-06-07 06:14 --------- d-----w C:\Programme\free-downloads.net 2008-06-07 06:14 --------- d-----w C:\Programme\Creative 2008-06-06 20:28 --------- d-----w C:\Programme\Die Gilde 2008-06-06 20:15 --------- d-----w C:\Programme\Free Download Manager 2008-06-06 20:15 --------- d-----w C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\FreeDownloadManager.ORG 2008-06-06 16:20 --------- d-----w C:\Programme\Theseus and the Minotaur 2008-06-06 12:23 --------- d-----w C:\Programme\LastChaosGER 2008-06-04 20:25 --------- d-----w C:\Programme\Unlocker 2008-06-04 14:13 --------- d-----w C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Microsoft Help 2008-06-01 10:17 --------- d-----w C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Kristanix Games 2008-05-31 23:53 --------- d-----w C:\Programme\Steam 2008-05-31 23:49 81,920 ----a-w C:\WINDOWS\ALCFDRTM.EXE 2008-05-31 18:50 --------- d-----w C:\Dokumente und Einstellungen\Marc&Martin\Anwendungsdaten\Azureus 2008-05-31 16:22 --------- d-----w C:\Dokumente und Einstellungen\Marc&Martin\Anwendungsdaten\Orbit 2008-05-31 13:39 315,392 ----a-w C:\WINDOWS\HideWin.exe 2008-05-31 13:39 --------- d-----w C:\Programme\Realtek 2008-05-31 13:35 --------- d--h--w C:\Programme\InstallShield Installation Information 2008-05-31 13:34 --------- d-----w C:\Programme\Canon 2008-05-31 10:51 --------- d-----w C:\Programme\Driver-Soft 2008-05-30 22:03 --------- d-----w C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\ATI 2008-05-30 21:56 --------- d-----w C:\Programme\ATI Technologies 2008-05-30 16:08 --------- d-----w C:\Programme\PC Drivers HeadQuarters 2008-05-30 14:55 --------- d-----w C:\Programme\Intel 2008-05-30 14:40 --------- d-----w C:\Dokumente und Einstellungen\Marc&Martin\Anwendungsdaten\ATI 2008-05-30 14:30 --------- d-----w C:\Dokumente und Einstellungen\Marc&Martin\Anwendungsdaten\VersionTracker Pro 2008-05-30 13:48 --------- d-----w C:\Programme\TechTracker 2008-05-30 13:34 --------- d-----w C:\Programme\Xilisoft 2008-05-23 21:54 --------- d-----w C:\Programme\Counter-Strike 1.6 2008-05-22 22:22 9,464 ------w C:\WINDOWS\system32\drivers\cdralw2k.sys 2008-05-22 22:22 9,336 ------w C:\WINDOWS\system32\drivers\cdr4_xp.sys 2008-05-22 22:22 43,528 ------w C:\WINDOWS\system32\drivers\PxHelp20.sys 2008-05-20 07:32 15,328 ----a-w C:\WINDOWS\system32\drivers\pssnap.sys 2008-05-19 19:02 --------- d-----w C:\Programme\Solveig Multimedia 2008-05-19 12:39 --------- d-----w C:\Programme\WinXMedia 2008-05-19 12:37 --------- d-----w C:\Dokumente und Einstellungen\Marc&Martin\Anwendungsdaten\dvdcss 2008-05-17 15:52 --------- d-----w C:\Programme\TrackMania Nations ESWC 2008-05-16 08:50 --------- d-----w C:\Dokumente und Einstellungen\Marc&Martin\Anwendungsdaten\Kristanix Software 2008-05-15 18:00 --------- d-----w C:\Programme\Azureus 2008-05-14 15:03 4,742,144 ----a-w C:\WINDOWS\system32\drivers\RtkHDAud.sys 2008-05-13 16:50 16,862,720 ----a-w C:\WINDOWS\RTHDCPL.exe 2008-05-13 11:36 --------- d-----w C:\Programme\Jack Keane 2008-05-13 11:35 278,728 ----a-w C:\WINDOWS\system32\drivers\atksgt.sys 2008-05-13 11:35 25,416 ----a-w C:\WINDOWS\system32\drivers\lirsgt.sys 2008-05-12 19:52 --------- d-----w C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Creative 2008-05-12 16:30 3,007,488 ----a-w C:\WINDOWS\system32\drivers\ati2mtag.sys 2008-05-12 15:02 49,152 ----a-w C:\WINDOWS\system32\drivers\ati2erec.dll 2008-05-12 09:31 --------- d-----w C:\Programme\Gemeinsame Dateien\Adobe 2008-05-12 09:29 --------- d-----w C:\Dokumente und Einstellungen\Marc&Martin\Anwendungsdaten\AdobeUM 2008-05-12 09:05 --------- d-----w C:\Programme\Wise Registry Cleaner 3 Pro 2008-05-11 17:16 --------- d-----w C:\Programme\AnVir Task Manager Free 2008-05-10 11:42 --------- d-----w C:\Programme\DAEMON Tools Lite 2008-05-10 11:31 717,296 ----a-w C:\WINDOWS\system32\drivers\sptd.sys 2008-05-10 11:31 --------- d-----w C:\Programme\DAEMON Tools 2008-05-10 11:31 --------- d-----w C:\Dokumente und Einstellungen\Marc&Martin\Anwendungsdaten\DAEMON Tools 2008-05-10 11:19 --------- d-----w C:\Programme\Iron Man 2008-05-08 14:02 203,136 ----a-w C:\WINDOWS\system32\drivers\rmcast.sys 2008-04-28 13:16 1,541,896 ----a-w C:\WINDOWS\CISUnins.exe 2008-04-28 13:16 1,541,896 ----a-w C:\WINDOWS\CICUnins.exe 2008-04-23 14:10 774,144 ----a-w C:\Programme\RngInterstitial.dll 2008-04-14 02:23 32,866 ------w C:\WINDOWS\slrundll.exe 2008-04-14 02:23 288,768 ----a-w C:\WINDOWS\winhlp32.exe 2008-04-14 02:22 70,144 ----a-w C:\WINDOWS\notepad.exe 2008-04-14 02:22 50,688 ----a-w C:\WINDOWS\twain_32.dll 2008-04-14 02:22 153,600 ----a-w C:\WINDOWS\regedit.exe 2008-04-14 02:22 10,752 ----a-w C:\WINDOWS\hh.exe 2008-04-14 02:22 1,036,800 ----a-w C:\WINDOWS\explorer.exe 2007-06-29 20:44 3,675 ----a-w C:\Dokumente und Einstellungen\Marc&Martin\Anwendungsdaten\Sys2657a.DLL . (((((((((((((((((((((((((((( Autostart Punkte der Registrierung )))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Hinweis* leere Eintrage & legitime Standardeintrage werden nicht angezeigt. [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 04:22 15360] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "avgnt"="C:\Programme\AntiVir PersonalEdition Classic\avgnt.exe" [2008-04-19 12:41 262401] "StartCCC"="C:\Programme\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-01-21 12:17 61440] "QuickTime Task"="C:\Programme\QuickTime\QTTask.exe" [2008-05-27 10:50 413696] "BDMCon"="C:\Programme\BitDefender10\bdmcon.exe" [2007-04-02 15:48 290816] "BDAgent"="C:\Programme\BitDefender10\bdagent.exe" [2007-03-26 14:49 69632] "SoundMan"="SOUNDMAN.EXE" [2006-07-21 16:14 86016 C:\WINDOWS\SoundMan.exe] "AlcWzrd"="ALCWZRD.EXE" [2006-05-04 16:26 2808832 C:\WINDOWS\alcwzrd.exe] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 04:22 15360] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\OPXPGina] 2005-08-12 17:01 49152 C:\APPS\Softex\OmniPass\OPXPGina.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "msacm.l3acm"= C:\WINDOWS\system32\l3codecp.acm "msacm.l3codec"= C:\WINDOWS\system32\l3codecp.acm HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareRemover [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDAgent] --a------ 2007-03-26 14:49 69632 C:\Programme\BitDefender10\bdagent.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ClipIncSrvTray] --a------ 2008-04-18 18:08 584704 C:\Programme\Tobit ClipInc\Player\ClipIncTray.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite] --a------ 2008-04-01 11:39 486856 C:\Programme\DAEMON Tools Lite\daemon.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "XCOMM"=2 (0x2) "WMPNetworkSvc"=3 (0x3) "WLSetupSvc"=3 (0x3) "VSSERV"=2 (0x2) "usnjsvc"=3 (0x3) "ose"=3 (0x3) "odserv"=3 (0x3) "LIVESRV"=2 (0x2) "LightScribeService"=2 (0x2) "idsvc"=3 (0x3) "GenericHidService"=2 (0x2) "CyberLink Media Library Service"=2 (0x2) "CLSched"=2 (0x2) "CLCapSvc"=2 (0x2) "bdss"=2 (0x2) "AOL ACS"=2 (0x2) "omniserv"=2 (0x2) "Pml Driver HPZ12"=2 (0x2) "FirebirdServerMAGIXInstance"=3 (0x3) "ClipInc002"=2 (0x2) "ClipInc001"=2 (0x2) "ATI Smart"=2 (0x2) "Bonjour Service"=2 (0x2) "Ati HotKey Poller"=2 (0x2) [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "C:\\Programme\\Zattoo\\zattood.exe"= "C:\\Programme\\Zattoo\\Zattoo2.exe"= "C:\\Programme\\Metin2_Germany\\metin2.bin"= "C:\\Programme\\ICQ6\\ICQ.exe"= "C:\\Programme\\Veoh Networks\\Veoh\\VeohClient.exe"= "C:\\Programme\\Bonjour\\mDNSResponder.exe"= "C:\\Programme\\Mozilla Firefox 3 Beta 5\\firefox.exe"= "C:\Programme\Gameforge4D\AirRivalsDe\Launcher.atm"= C:\Programme\Gameforge4D\AirRivalsDe\Launcher.atm:Enabled:GameExe2 "C:\Programme\Gameforge4D\AirRivalsDe\Res-Voip\SCVoIP.exe"= C:\Programme\Gameforge4D\AirRivalsDe\Res-Voip\SCVoIP.exe:Enabled:GameVoIP [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "9420:TCP"= 9420:TCP:*:Disabled:Red Swoosh "5000:UDP"= 5000:UDP:*:Disabled:Red Swoosh R2 acedrv10;acedrv10;C:\WINDOWS\system32\drivers\acedrv10.sys [2007-07-27 10:13] R2 acehlp10;acehlp10;C:\WINDOWS\system32\drivers\acehlp10.sys [2007-07-27 12:46] S3 p2pgasvc;Peernetzwerk-Gruppenauthentifizierung;C:\WINDOWS\system32\svchost.exe [2008-04-14 04:23] S3 p2pimsvc;Peernetzwerkidentitäts-Manager;C:\WINDOWS\system32\svchost.exe [2008-04-14 04:23] S3 p2psvc;Peernetzwerk;C:\WINDOWS\system32\svchost.exe [2008-04-14 04:23] S3 PNRPSvc;Peer Name Resolution-Protokoll;C:\WINDOWS\system32\svchost.exe [2008-04-14 04:23] S3 rockusb;Driver for rockusb Device;C:\WINDOWS\system32\DRIVERS\rockusb.sys [2006-03-22 20:57] S3 ss_bus;Samsung Mobile USB Device 1.0 driver (WDM);C:\WINDOWS\system32\DRIVERS\ss_bus.sys [2005-01-24 15:38] S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter;C:\WINDOWS\system32\DRIVERS\ss_mdfl.sys [2006-02-24 13:55] S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers;C:\WINDOWS\system32\DRIVERS\ss_mdm.sys [2006-02-24 13:55] S4 ClipInc001;ClipInc 001;C:\Programme\Tobit ClipInc\Server\ClipInc-Server.exe 001 [] S4 ClipInc002;ClipInc 002;C:\Programme\Tobit ClipInc\Server\ClipInc-Server.exe 002 [] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] p2psvc REG_MULTI_SZ p2psvc p2pimsvc p2pgasvc PNRPSvc [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{3b107eda-61f3-11dc-b768-000e2ebd6d11}] \Shell\access\command - J:\.\sgportable\SGPortable.exe \Shell\AutoRun\command - J:\.\sgportable\SGPortable.exe [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{582610B8-E496-4813-993C-4B027173FE38}] C:\Programme\PixiePack Codec Pack\InstallerHelper.exe . Inhalt des "geplante Tasks" Ordners "2008-06-27 15:21:59 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job" - C:\Programme\Apple Software Update\SoftwareUpdate.exe "2008-07-05 23:52:00 C:\WINDOWS\Tasks\MP Scheduled Scan.job" - C:\Programme\Windows Defender\MpCmdRun.exe . ************************************************************************** catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-07-08 18:20:50 Windows 5.1.2600 Service Pack 3 NTFS Scanne versteckte Prozesse... Scanne versteckte Autostart Eintr„ge... Scanne versteckte Dateien... Scan erfolgreich abgeschlossen versteckte Dateien: 0 ************************************************************************** . --------------------- DLLs Loaded Under Running Processes --------------------- PROCESS: C:\WINDOWS\system32\winlogon.exe -> C:\Apps\Softex\OmniPass\opxpgina.dll . ------------------------ Other Running Processes ------------------------ . C:\APPS\Softex\OmniPass\OPXPApp.exe C:\Programme\AntiVir PersonalEdition Classic\sched.exe C:\Programme\AntiVir PersonalEdition Classic\avguard.exe C:\WINDOWS\system32\tcpsvcs.exe C:\Programme\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Programme\Hama\Common\RaUI.exe C:\Programme\HP\Digital Imaging\bin\hpqtra08.exe C:\Programme\HP\Digital Imaging\bin\hpqste08.exe C:\Programme\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\WINDOWS\system32\imapi.exe . ************************************************************************** . Zeit der Fertigstellung: 2008-07-08 18:26:54 - machine was rebooted ComboFix-quarantined-files.txt 2008-07-08 16:26:41 ComboFix2.txt 2008-03-23 13:47:54 24 Verzeichnis(se), 16,330,129,408 Bytes frei 31 Verzeichnis(se), 16,234,459,136 Bytes frei 264 --- E O F --- 2008-06-20 15:04:08 |
|
|
||
08.07.2008, 19:30
Ehrenmitglied
Beiträge: 29434 |
#4
Hallo,
«« http://virus-protect.org/artikel/tools/otmoveIt.html Download OTMoveIt zum Desktop OTMoveIt öffne: OTMoveIt.exe OTMoveIt Kopiere rein: im linken Fenster ,wo steht: Paste List of Files/Folders to Move Zitat C:\Programme\Free Download ManagerKlicke auf den Roten MoveIt! « wende dialfix an - poste dann hier den report http://virus-protect.org/artikel/tools/dial_a_fix.html __________ MfG Sabina rund um die PC-Sicherheit |
|
|
||
08.07.2008, 19:33
...neu hier
Themenstarter Beiträge: 6 |
#5
oh hab den dial fix log vergessen
Notes about this log: 1) "->" denotes an external command being executed, and "-> (number)" indicates the return code from the previous command 2) Not all external command return codes are accurate, or useful 3) Sometimes commands return 0 (no error) even when they fail or crash 4) If an error occurs while registering an object, please send an email to: dial-a-fix@DjLizard.net and include a copy of this log DAF version: v0.60.0.24 --- System info --- OS: Microsoft Windows XP Service Pack 3 IE version: 7.0.5730.13 MPC: 55683-OEM CPU: Intel(R) Celeron(R) CPU 3.06GHz (~3066MHz) CPU: CPU is 64-bit or has 64-bit extensions BIOS: 23.01.2005 Memory (approx): 511MB Uptime: 4 hour(s) Current directory: C:\Dokumente und Einstellungen\Marc&Martin\Desktop\Dial-a-fix --- 08.07.2008 18:04:25 -- Dial-a-fix : [v0.60.0.24] -- started 18:04:25 | Policy scan started 18:04:25 | Policy scan ended - no restrictive policies were found --- Emptying temp folders --- 18:04:55 | Deleting C:\Dokumente und Einstellungen\Marc&Martin\Lokale Einstellungen\Temp... 18:04:56 | C:\Dokumente und Einstellungen\Marc&Martin\Lokale Einstellungen\Temp could not be completely emptied, please reboot and try again 18:04:56 | Deleting C:\WINDOWS\temp... 18:04:56 | C:\WINDOWS\temp could not be completely emptied, please reboot and try again 18:04:56 | Deleting C:\DOKUME~1\MARC&M~1\LOKALE~1\Temp... 18:04:56 | C:\DOKUME~1\MARC&M~1\LOKALE~1\Temp could not be completely emptied, please reboot and try again --- MSI --- 18:05:10 | Registered: C:\WINDOWS\system32\msi.dll --- Windows Update --- --- Registration: Windows Update/Automatic Update DLLs --- 18:05:19 | Unregistered: C:\WINDOWS\system32\msxml.dll 18:05:19 | Registered: C:\WINDOWS\system32\msxml.dll 18:05:20 | Unregistered: C:\WINDOWS\system32\msxml2.dll 18:05:21 | Registered: C:\WINDOWS\system32\msxml2.dll 18:05:40 | Unregistered: C:\WINDOWS\system32\msxml3.dll 18:05:41 | Registered: C:\WINDOWS\system32\msxml3.dll 18:05:41 | Unregistered: C:\WINDOWS\system32\msxml4.dll 18:05:41 | Registered: C:\WINDOWS\system32\msxml4.dll 18:05:42 | Unregistered: C:\WINDOWS\system32\qmgr.dll 18:05:42 | Registered: C:\WINDOWS\system32\qmgr.dll 18:05:42 | Unregistered: C:\WINDOWS\system32\qmgrprxy.dll 18:05:42 | Registered: C:\WINDOWS\system32\qmgrprxy.dll 18:05:42 | Unregistered: C:\WINDOWS\system32\muweb.dll 18:05:42 | Registered: C:\WINDOWS\system32\muweb.dll 18:05:42 | Unregistered: C:\WINDOWS\system32\winhttp.dll 18:05:42 | Registered: C:\WINDOWS\system32\winhttp.dll 18:05:43 | Registered: C:\WINDOWS\system32\wuapi.dll 18:05:43 | Unregistered: C:\WINDOWS\system32\wuaueng.dll 18:05:45 | Registered: C:\WINDOWS\system32\wuaueng.dll 18:05:45 | Unregistered: C:\WINDOWS\system32\wuaueng1.dll 18:05:45 | Registered: C:\WINDOWS\system32\wuaueng1.dll 18:05:45 | Unregistered: C:\WINDOWS\system32\wucltui.dll 18:05:45 | Registered: C:\WINDOWS\system32\wucltui.dll 18:05:45 | Unregistered: C:\WINDOWS\system32\wups.dll 18:05:45 | Registered: C:\WINDOWS\system32\wups.dll 18:05:45 | Unregistered: C:\WINDOWS\system32\wups2.dll 18:05:45 | Registered: C:\WINDOWS\system32\wups2.dll 18:05:45 | Unregistered: C:\WINDOWS\system32\wuweb.dll 18:05:45 | Registered: C:\WINDOWS\system32\wuweb.dll 18:05:45 | Registered: C:\WINDOWS\system32\ole32.dll --- SSL/HTTPS/Cryptography --- 18:05:58 | Executed 'cmd.exe /c rmdir /q /s C:\WINDOWS\system32\Catroot2' --- Registration: SSL/HTTPS/Cryptography --- 18:06:02 | Unregistered: C:\WINDOWS\system32\cryptdlg.dll 18:06:02 | Registered: C:\WINDOWS\system32\cryptdlg.dll 18:06:02 | Unregistered: C:\WINDOWS\system32\cryptui.dll 18:06:02 | Registered: C:\WINDOWS\system32\cryptui.dll 18:06:03 | Unregistered: C:\WINDOWS\system32\cryptext.dll 18:06:03 | Registered: C:\WINDOWS\system32\cryptext.dll 18:06:03 | Unregistered: C:\WINDOWS\system32\dssenh.dll 18:06:03 | Registered: C:\WINDOWS\system32\dssenh.dll 18:06:03 | Unregistered: C:\WINDOWS\system32\gpkcsp.dll 18:06:03 | Registered: C:\WINDOWS\system32\gpkcsp.dll 18:06:04 | Unregistered: C:\WINDOWS\system32\initpki.dll 18:06:59 | Registered: C:\WINDOWS\system32\initpki.dll 18:06:59 | Unregistered: C:\WINDOWS\system32\licdll.dll 18:06:59 | Registered: C:\WINDOWS\system32\licdll.dll 18:06:59 | Unregistered: C:\WINDOWS\system32\mssign32.dll 18:06:59 | Registered: C:\WINDOWS\system32\mssign32.dll 18:06:59 | Unregistered: C:\WINDOWS\system32\mssip32.dll 18:07:00 | Registered: C:\WINDOWS\system32\mssip32.dll 18:07:01 | Unregistered: C:\WINDOWS\system32\scardssp.dll 18:07:01 | Registered: C:\WINDOWS\system32\scardssp.dll 18:07:02 | Unregistered: C:\WINDOWS\system32\sccbase.dll 18:07:02 | Registered: C:\WINDOWS\system32\sccbase.dll 18:07:02 | Unregistered: C:\WINDOWS\system32\scecli.dll 18:07:02 | Registered: C:\WINDOWS\system32\scecli.dll 18:07:02 | Unregistered: C:\WINDOWS\system32\softpub.dll 18:07:02 | Registered: C:\WINDOWS\system32\softpub.dll 18:07:03 | Unregistered: C:\WINDOWS\system32\slbcsp.dll 18:07:03 | Registered: C:\WINDOWS\system32\slbcsp.dll 18:07:03 | Unregistered: C:\WINDOWS\system32\regwizc.dll 18:07:04 | Registered: C:\WINDOWS\system32\regwizc.dll 18:07:04 | Unregistered: C:\WINDOWS\system32\rsaenh.dll 18:07:04 | Registered: C:\WINDOWS\system32\rsaenh.dll 18:07:04 | Unregistered: C:\WINDOWS\system32\winhttp.dll 18:07:04 | Registered: C:\WINDOWS\system32\winhttp.dll 18:07:04 | Unregistered: C:\WINDOWS\system32\wintrust.dll 18:07:04 | Registered: C:\WINDOWS\system32\wintrust.dll --- Registration: ActiveX controls/codecs --- 18:07:05 | Registered: C:\WINDOWS\system32\acelpdec.ax 18:07:05 | Registered: C:\WINDOWS\system32\actxprxy.dll 18:07:05 | Registered: C:\WINDOWS\system32\asctrls.ocx 18:07:05 | Registered: C:\WINDOWS\system32\daxctle.ocx 18:07:06 | Registered: C:\WINDOWS\system32\hhctrl.ocx 18:07:06 | Registered: C:\WINDOWS\system32\l3codecx.ax 18:07:06 | Registered: C:\WINDOWS\system32\licmgr10.dll 18:07:06 | Registered: C:\WINDOWS\system32\mpg4ds32.ax 18:07:12 | Registered: C:\WINDOWS\system32\msdxm.ocx 18:07:13 | Registered: C:\WINDOWS\system32\proctexe.ocx 18:07:13 | Registered: C:\WINDOWS\system32\tdc.ocx 18:07:13 | Registered: C:\WINDOWS\system32\wshom.ocx --- Registration: Control Panel applets --- 18:07:16 | DllInstalled: C:\WINDOWS\system32\inetcpl.cpl 18:07:16 | DllInstalled: C:\WINDOWS\system32\nusrmgr.cpl 18:07:17 | Registered: C:\WINDOWS\system32\nusrmgr.cpl --- Registration: Direct[X|Draw|Show|Media] --- 18:07:17 | Registered: C:\WINDOWS\system32\quartz.dll 18:07:18 | Registered: C:\WINDOWS\system32\danim.dll 18:07:19 | Registered: C:\WINDOWS\system32\dmscript.dll 18:07:19 | Registered: C:\WINDOWS\system32\dmstyle.dll 18:07:19 | Registered: C:\WINDOWS\system32\dxmasf.dll 18:07:19 | Registered: C:\WINDOWS\system32\dxtmsft.dll 18:07:19 | Registered: C:\WINDOWS\system32\dxtrans.dll 18:07:20 | Registered: C:\WINDOWS\system32\sbe.dll --- Registration: Programming cores/runtimes --- 18:07:20 | Registered: C:\WINDOWS\system32\atl.dll 18:07:20 | Registered: C:\WINDOWS\system32\corpol.dll 18:07:20 | Registered: C:\WINDOWS\system32\jscript.dll 18:07:20 | Registered: C:\WINDOWS\system32\dispex.dll 18:07:20 | Registered: C:\WINDOWS\system32\scrrun.dll 18:07:21 | Registered: C:\WINDOWS\system32\scrobj.dll 18:07:21 | Registered: C:\WINDOWS\system32\vbscript.dll 18:07:21 | Registered: C:\WINDOWS\system32\wshext.dll --- Registration: Explorer/IE/OE/shell/WMP --- 18:07:21 | Registered: C:\WINDOWS\system32\activeds.dll 18:07:22 | Registered: C:\WINDOWS\system32\audiodev.dll 18:07:22 | Registered: C:\WINDOWS\system32\browsewm.dll 18:07:22 | Registered: C:\WINDOWS\system32\cabview.dll 18:07:23 | Registered: C:\WINDOWS\system32\cdfview.dll 18:07:23 | Registered: C:\WINDOWS\system32\clbcatex.dll 18:07:23 | Registered: C:\WINDOWS\system32\clbcatq.dll 18:07:23 | Registered: C:\WINDOWS\system32\comcat.dll 18:07:23 | Registered: C:\WINDOWS\system32\cscui.dll 18:07:23 | Registered: C:\WINDOWS\system32\credui.dll 18:07:23 | Registered: C:\WINDOWS\system32\datime.dll 18:07:24 | Registered: C:\WINDOWS\system32\devmgr.dll 18:07:24 | Registered: C:\WINDOWS\system32\dfsshlex.dll 18:07:24 | Registered: C:\WINDOWS\system32\dmdlgs.dll 18:07:24 | Registered: C:\WINDOWS\system32\dmdskmgr.dll 18:07:24 | Registered: C:\WINDOWS\system32\dmloader.dll 18:07:24 | Registered: C:\WINDOWS\system32\dmocx.dll 18:07:24 | Registered: C:\WINDOWS\system32\dmview.ocx 18:07:24 | DllInstalled: C:\WINDOWS\system32\dsuiext.dll 18:07:24 | Registered: C:\WINDOWS\system32\dsuiext.dll 18:07:25 | DllInstalled: C:\WINDOWS\system32\dsquery.dll 18:07:25 | Registered: C:\WINDOWS\system32\dsquery.dll 18:07:25 | Registered: C:\WINDOWS\system32\dskquoui.dll 18:07:25 | Registered: C:\WINDOWS\system32\els.dll 18:07:25 | Registered: C:\WINDOWS\system32\es.dll 18:07:25 | Registered: C:\WINDOWS\system32\fontext.dll 18:07:26 | Registered: C:\WINDOWS\system32\hlink.dll 18:07:26 | Registered: C:\WINDOWS\system32\hnetcfg.dll 18:07:26 | Registered: C:\WINDOWS\system32\iedkcs32.dll 18:07:26 | Registered: C:\WINDOWS\system32\iepeers.dll 18:07:26 | Registered: C:\WINDOWS\system32\ils.dll 18:07:26 | Registered: C:\WINDOWS\system32\inetcfg.dll 18:07:27 | Registered: C:\WINDOWS\system32\inetcomm.dll 18:07:27 | Registered: C:\WINDOWS\system32\laprxy.dll 18:07:28 | Registered: C:\WINDOWS\system32\lmrt.dll 18:07:28 | Registered: C:\WINDOWS\system32\mlang.dll 18:07:29 | Registered: C:\WINDOWS\system32\mmcndmgr.dll 18:07:29 | Registered: C:\WINDOWS\system32\mmcshext.dll 18:07:29 | Registered: C:\WINDOWS\system32\mscoree.dll 18:07:29 | Registered: C:\WINDOWS\system32\mshtmled.dll 18:07:29 | Registered: C:\WINDOWS\system32\msoeacct.dll 18:07:30 | Registered: C:\WINDOWS\system32\msr2c.dll 18:07:30 | DllInstalled: C:\WINDOWS\system32\mydocs.dll 18:07:30 | Registered: C:\WINDOWS\system32\mydocs.dll 18:07:30 | Registered: C:\WINDOWS\system32\mstime.dll 18:07:30 | Registered: C:\WINDOWS\system32\netcfgx.dll 18:07:30 | DllInstalled: C:\WINDOWS\system32\netplwiz.dll 18:07:30 | Registered: C:\WINDOWS\system32\netplwiz.dll 18:07:31 | Registered: C:\WINDOWS\system32\netman.dll 18:07:31 | Registered: C:\WINDOWS\system32\netshell.dll 18:07:31 | Registered: C:\WINDOWS\system32\ntmsevt.dll 18:07:31 | Registered: C:\WINDOWS\system32\ntmsmgr.dll 18:07:31 | DllInstalled: C:\WINDOWS\system32\ntmssvc.dll 18:07:31 | Registered: C:\WINDOWS\system32\ntmssvc.dll 18:07:31 | DllInstalled: C:\WINDOWS\system32\occache.dll 18:07:32 | Registered: C:\WINDOWS\system32\occache.dll 18:07:32 | Registered: C:\WINDOWS\system32\ole32.dll 18:07:32 | Registered: C:\WINDOWS\system32\oleaut32.dll 18:07:32 | Registered: C:\WINDOWS\system32\oleacc.dll 18:07:32 | Registered: C:\WINDOWS\system32\olepro32.dll 18:07:32 | DllInstalled: C:\WINDOWS\system32\photowiz.dll 18:07:32 | Registered: C:\WINDOWS\system32\photowiz.dll 18:07:32 | Registered: C:\WINDOWS\system32\remotepg.dll 18:07:32 | Registered: C:\WINDOWS\system32\rpcrt4.dll 18:07:32 | Registered: C:\WINDOWS\system32\rshx32.dll 18:07:32 | Registered: C:\WINDOWS\system32\sendmail.dll 18:07:33 | Registered: C:\WINDOWS\system32\slayerxp.dll 18:07:33 | Registered: C:\WINDOWS\system32\shell32.dll 18:07:42 | DllInstalled: C:\WINDOWS\system32\shell32.dll 18:07:43 | Registered: C:\WINDOWS\system32\shmedia.dll 18:07:43 | DllInstalled: C:\WINDOWS\system32\shimgvw.dll 18:07:43 | Registered: C:\WINDOWS\system32\shimgvw.dll 18:07:43 | DllInstalled: C:\WINDOWS\system32\shsvcs.dll 18:07:43 | Registered: C:\WINDOWS\system32\shsvcs.dll 18:07:44 | Registered: C:\WINDOWS\system32\srclient.dll 18:07:44 | Unregistered: C:\WINDOWS\system32\stobject.dll 18:07:44 | Registered: C:\WINDOWS\system32\stobject.dll 18:07:44 | Registered: C:\WINDOWS\system32\twext.dll 18:07:46 | DllInstalled: C:\WINDOWS\system32\urlmon.dll 18:07:46 | Registered: C:\WINDOWS\system32\urlmon.dll 18:07:46 | Registered: C:\WINDOWS\system32\userenv.dll 18:07:46 | Registered: C:\WINDOWS\system32\winhttp.dll 18:07:46 | DllInstalled: C:\WINDOWS\system32\wininet.dll 18:07:46 | Registered: C:\WINDOWS\system32\zipfldr.dll 18:07:46 | Registered: C:\Programme\Gemeinsame Dateien\system\Ole DB\msdadc.dll 18:07:47 | Registered: C:\Programme\Gemeinsame Dateien\system\Ole DB\msdaenum.dll 18:07:47 | Registered: C:\Programme\Gemeinsame Dateien\system\Ole DB\msdaer.dll 18:07:47 | Registered: C:\Programme\Gemeinsame Dateien\system\Ole DB\msdaipp.dll 18:07:47 | Registered: C:\Programme\Gemeinsame Dateien\system\Ole DB\msdaora.dll 18:07:47 | Registered: C:\Programme\Gemeinsame Dateien\system\Ole DB\msdaosp.dll 18:07:47 | Registered: C:\Programme\Gemeinsame Dateien\system\Ole DB\msdaps.dll 18:07:47 | Registered: C:\Programme\Gemeinsame Dateien\system\Ole DB\msdasc.dll 18:07:48 | Registered: C:\Programme\Gemeinsame Dateien\system\Ole DB\msdasql.dll 18:07:48 | Registered: C:\Programme\Gemeinsame Dateien\system\Ole DB\msdatt.dll 18:07:48 | Registered: C:\Programme\Gemeinsame Dateien\system\Ole DB\msdaurl.dll 18:07:48 | Registered: C:\Programme\Gemeinsame Dateien\system\Ole DB\msdmeng.dll 18:07:49 | Registered: C:\Programme\Gemeinsame Dateien\system\Ole DB\msdmine.dll 18:07:49 | Registered: C:\Programme\Gemeinsame Dateien\system\Ole DB\msmdcb80.dll 18:07:50 | Registered: C:\Programme\Gemeinsame Dateien\system\Ole DB\msmdgd80.dll 18:07:50 | Registered: C:\Programme\Gemeinsame Dateien\system\Ole DB\msolap80.dll 18:07:50 | Registered: C:\Programme\Gemeinsame Dateien\system\Ole DB\msolui80.dll 18:07:50 | Registered: C:\Programme\Gemeinsame Dateien\system\Ole DB\msxactps.dll 18:07:50 | Registered: C:\Programme\Gemeinsame Dateien\system\Ole DB\oledb32.dll 18:07:51 | Registered: C:\Programme\Gemeinsame Dateien\system\Ole DB\oledb32r.dll 18:07:51 | Registered: C:\Programme\Gemeinsame Dateien\system\Ole DB\sqedb.dll 18:07:51 | Registered: C:\Programme\Gemeinsame Dateien\system\Ole DB\sqlxmlx.dll |
|
|
||
08.07.2008, 19:35
Ehrenmitglied
Beiträge: 29434 |
#6
««
http://virus-protect.org/artikel/tools/otmoveIt.html Download OTMoveIt zum Desktop OTMoveIt öffne: OTMoveIt.exe OTMoveIt Kopiere rein: im linken Fenster ,wo steht: Paste List of Files/Folders to Move Zitat C:\Programme\Free Download ManagerKlicke auf den Roten MoveIt! «« PC neustarten dann berichte, wie es läuft __________ MfG Sabina rund um die PC-Sicherheit |
|
|
||
08.07.2008, 23:02
...neu hier
Themenstarter Beiträge: 6 |
||
|
||
nach viren hab ich bereits gesucht (mit bitdefender und antivir aber das hat leider nicht geholfen)
hier den hijack log
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:40:51, on 08.07.2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Apps\Softex\OmniPass\OPXPApp.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programme\AntiVir PersonalEdition Classic\sched.exe
C:\Programme\AntiVir PersonalEdition Classic\avguard.exe
C:\Programme\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\tcpsvcs.exe
C:\WINDOWS\system32\svchost.exe
C:\Programme\Gemeinsame Dateien\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Programme\Gemeinsame Dateien\Softwin\BitDefender Scan Server\bdss.exe
C:\Programme\Gemeinsame Dateien\Softwin\BitDefender Update Service\livesrv.exe
C:\Programme\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\ALCWZRD.EXE
C:\Programme\BitDefender10\bdagent.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programme\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Programme\Hama\Common\RaUI.exe
C:\Programme\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Programme\Mozilla Firefox 3 Beta 5\firefox.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Programme\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.de/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R3 - URLSearchHook: Yahoo! Toolbar mit Pop-Up-Blocker - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Programme\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Programme\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (file missing)
O2 - BHO: SolidConverter PDF - {259F616C-A300-44F5-B04A-ED001A26C85C} - C:\Programme\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: VideoRaptorIePlugin Class - {90C8E8F8-A7C9-41E4-92E4-C679AE6FB78D} - C:\Programme\RapidSolution\Videoraptor\VideoRaptorIePlugin.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Programme\Free Download Manager\iefdm2.dll
O3 - Toolbar: SolidConverter PDF - {259F616C-A300-44F5-B04A-ED001A26C85C} - C:\Programme\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll
O3 - Toolbar: Yahoo! Toolbar mit Pop-Up-Blocker - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Programme\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [avgnt] "C:\Programme\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [StartCCC] "C:\Programme\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programme\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [BDMCon] "C:\Programme\BitDefender10\bdmcon.exe" /reg
O4 - HKLM\..\Run: [BDAgent] "C:\Programme\BitDefender10\bdagent.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Hama Wireless LAN Utility.lnk = C:\Programme\Hama\Common\RaUI.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Programme\HP\Digital Imaging\bin\hpqtra08.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: In Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: In Windows Live Writer in &Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Programme\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\ger.htm
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Programme\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{D17FAB49-B587-4C2E-B297-738A226DAAA0}: NameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{F2D3DB4C-56D5-4962-869D-67033EAC4F94}: NameServer = 192.168.2.1
O23 - Service: AntiVir PersonalEdition Classic Planer (AntiVirScheduler) - Avira GmbH - C:\Programme\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Programme\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Programme\Gemeinsame Dateien\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: Bonjour-Dienst (Bonjour Service) - Apple Inc. - C:\Programme\Bonjour\mDNSResponder.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Programme\Gemeinsame Dateien\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Programme\BitDefender10\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - SOFTWIN S.R.L - C:\Programme\Gemeinsame Dateien\Softwin\BitDefender Communicator\xcommsvr.exe
ich hofffe mir kann hier jemand helfen das problem zu lösen danke im vorraus