Re: Win Fixer Problem

Dieses Thema Re: Win Fixer Problem im Forum "Windows XP Forum" wurde erstellt von Markus2809, 8. Dez. 2005.

Thema: Re: Win Fixer Problem Hi, bin neu hier und kenn mich null mit Pcs aus. hab das problem gegoogelt, da mich der winfixer dermasser in den...

  1. Hi,

    bin neu hier und kenn mich null mit Pcs aus. hab das problem gegoogelt, da mich der winfixer dermasser in den wahnsinn getriben hat, und nun bin ich hier gelandet hoffe ihr könnt mir helden... wäre cool

    hier meine hijacklog

    Logfile of HijackThis v1.99.1
    Scan saved at 00:19:05, on 08.12.2005
    Platform: Windows XP SP1 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\csrss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\System32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\netdde.exe
    C:\Programme\0190wa~1\w0svc.exe
    C:\WINDOWS\System32\alg.exe
    C:\WINDOWS\system32\clipsrv.exe
    C:\Programme\Norton Utilities\NPROTECT.EXE
    C:\Programme\Gemeinsame Dateien\PestPatrol\ppRemoteService.exe
    C:\Programme\Speed Disk\nopdb.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\System32\Fast.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\System32\taskswitch.exe
    C:\WINDOWS\System32\fast.exe
    C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe
    C:\WINDOWS\System32\SerExt.exe
    C:\Programme\Lexmark 6200 Series\ezprint.exe
    C:\WINDOWS\dobrrzvd.exe
    C:\WINDOWS\System32\lxbucoms.exe
    C:\WINDOWS\switpa.exe
    C:\Program Files\Grlp\Fckko.exe
    C:\Programme\SurfAccuracy\SAcc.exe
    C:\Programme\Pinnacle\InstantCDDVD\InstantWrite\iwctrl.exe
    C:\Programme\Gigaset DECT\talk&surf_6_0\xcontrolcom.exe
    C:\Programme\ArcorOnline\Arcor.exe
    C:\Programme\ISTsvc\istsvc.exe
    C:\APPS\Powercinema\PCM3.exe
    C:\Programme\eMule\eMule.exe
    C:\Programme\Internet Explorer\iexplore.exe
    C:\Dokumente und Einstellungen\Markus\Desktop\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://213.159.117.134/index.php
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.arcor.de
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gmx.de/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.arcor.de
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.arcor.de
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.arcor.de
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.arcor.de
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = http://213.159.117.134/index.php
    R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.google.de/
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Arcor AG & Co. KG
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programme\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {37ADFB0E-E7C9-BF9E-B0CF-1B8C8B642F06} - C:\WINDOWS\System32\zqengupz.dll (file missing)
    O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Programme\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programme\google\googletoolbar1.dll
    O2 - BHO: ToolHelper - {AAAE1C1A-89F7-4AF6-ABD1-F8FBCFA47408} - C:\PROGRA~1\BUFFYB~1\tbu1DA\NIKIS_~1.DLL
    O2 - BHO: (no name) - {AB69FA3F-26AD-3042-579A-C8B060909BDF} - C:\WINDOWS\System32\zgihlunq.dll (file missing)
    O2 - BHO: (no name) - {B3101CAF-BE1A-735C-6658-74842BF46278} - C:\WINDOWS\System32\dcxrrewk.dll (file missing)
    O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programme\MSN Apps\MSN Toolbar\01.02.4000.1001\de\msntb.dll
    O3 - Toolbar: AZESearch toolbar - {A6790AA5-C6C7-4BCF-A46D-0FDAC4EA90EB} - C:\WINDOWS\System32\azesearch.ocx (file missing)
    O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programme\MSN Apps\MSN Toolbar\01.02.4000.1001\de\msntb.dll
    O3 - Toolbar: GMX Toolbar - {2D1DDD38-CE4D-459b-A01C-F11BC92D5B69} - C:\Programme\GMX\GMX Toolbar\toolbar.dll
    O3 - Toolbar: ISTbar - {FAA356E4-D317-42a6-AB41-A3021C6E7D52} - C:\Programme\ISTbar\istbarcm.dll (file missing)
    O3 - Toolbar: YourSiteBar - {86227D9C-0EFE-4f8a-AA55-30386A3F5686} - C:\PROGRA~1\YOURSI~1\ysb.dll (file missing)
    O3 - Toolbar: Buffy BAR - 1.6 - {D940F380-49C7-4A05-9E33-53930AF5768F} - C:\Programme\Buffy BAR\tbu1DA\nikis_collectibles.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programme\google\googletoolbar1.dll
    O4 - HKLM\..\Run: [Tweak UI 1.33 deutsch] RUNDLL32.EXE TWEAKUI.CPL,TweakMeUp
    O4 - HKLM\..\Run: [BackgroundSwitcher] C:\WINDOWS\System32\bgswitch.exe
    O4 - HKLM\..\Run: [CoolSwitch] C:\WINDOWS\System32\taskswitch.exe
    O4 - HKLM\..\Run: [FastUser] C:\WINDOWS\System32\fast.exe
    O4 - HKLM\..\Run: [ATIPTA] C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe
    O4 - HKLM\..\Run: [iaqvprucvzf] C:\WINDOWS\System32\yykwaxev.exe
    O4 - HKLM\..\Run: [QuickTime Task] C:\Programme\QuickTime\qttask.exe -atboottime
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [JVM0.12] C:\WINDOWS\System32\ngxurhdd.exe
    O4 - HKLM\..\Run: [SerExt] SerExt.exe /unplug
    O4 - HKLM\..\Run: [LXBUCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXBUtime.dll,_RunDLLEntry@16
    O4 - HKLM\..\Run: [lxbumon.exe] C:\Programme\Lexmark 6200 Series\lxbumon.exe
    O4 - HKLM\..\Run: [FaxCenterServer] C:\Programme\Lexmark Fax Solutions\fm3032.exe /s
    O4 - HKLM\..\Run: [EzPrint] C:\Programme\Lexmark 6200 Series\ezprint.exe
    O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\System32\PSDrvCheck.exe
    O4 - HKLM\..\Run: [JVM0.14] C:\WINDOWS\System32\bhyzds.exe
    O4 - HKLM\..\Run: [lgkqfwmwgpfpyjxujyjhb] C:\WINDOWS\dobrrzvd.exe
    O4 - HKLM\..\Run: [ICQ Lite] C:\Programme\ICQLite\ICQLite.exe -minimize
    O4 - HKLM\..\Run: [9ymIWP] C:\WINDOWS\alffssql.exe
    O4 - HKLM\..\Run: [sais] c:\programme\180solutions\sais.exe
    O4 - HKLM\..\Run: [pcxixqj] C:\WINDOWS\pcxixqj.exe
    O4 - HKLM\..\Run: [?˱Ë{O¼êá?d??VnrÖ¦C:\Programme\ISTsvc\istsvc.exe] C:\WINDOWS\alffssql.exe
    O4 - HKLM\..\Run: [?˱Ë{O¼êá?d??/?²ÆC:\Programme\ISTsvc\istsvc.exe] C:\WINDOWS\alffssql.exe
    O4 - HKLM\..\Run: [BearShare] C:\Programme\BearShare\BearShare.exe /pause
    O4 - HKLM\..\Run: [switp] C:\WINDOWS\switpa.exe
    O4 - HKLM\..\Run: [®Windows Update] svchosts.exe
    O4 - HKLM\..\Run: [Lnnfy] C:\Program Files\Grlp\Fckko.exe
    O4 - HKLM\..\Run: [Agent] C:\Programme\CyberLink Media Carnival\PowerVCR II\Agent.exe
    O4 - HKLM\..\Run: [Remote_Agent] C:\Programme\CyberLink Media Carnival\PowerVCR II\RemoteAgent.exe
    O4 - HKLM\..\Run: [?˱?V÷h$vùõ?/?²ÆßC:\Programme\ISTsvc\istsvc.exe] C:\WINDOWS\alffssql.exe
    O4 - HKLM\..\Run: [0190 Warner] C:\PROGRA~1\0190WA~1\WARN0190.EXE
    O4 - HKLM\..\Run: [SurfAccuracy] C:\Programme\SurfAccuracy\SAcc.exe
    O4 - HKLM\..\Run: [mspd] C:\WINDOWS\System32\mspd.exe
    O4 - HKLM\..\Run: [AnyDVD] C:\Programme\SlySoft\AnyDVD\AnyDVD.exe
    O4 - HKLM\..\Run: [IST Service] C:\Programme\ISTsvc\istsvc.exe
    O4 - HKCU\..\Run: [STYLEXP] C:\Programme\TGTSoft\StyleXP\StyleXP.exe -Hide
    O4 - HKCU\..\Run: [Yahoo! Pager] C:\Programme\Yahoo!\Messenger\ypager.exe -quiet
    O4 - HKCU\..\Run: [InstantTray] C:\Programme\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
    O4 - HKCU\..\Run: [IW_Drop_Icon] C:\Programme\Pinnacle\InstantCDDVD\InstantWrite\iwctrl.exe /dropdisc
    O4 - HKCU\..\Run: [NBJ] C:\Programme\Ahead\Nero BackItUp\NBJ.exe
    O4 - HKCU\..\Run: [AntiSpyware7] C:\Programme\Steganos AntiSpyware 7\aspy7.exe /0
    O4 - HKCU\..\Run: [®Windows Update] svchosts.exe
    O4 - HKCU\..\Run: [MSMSGS] C:\Programme\Messenger\Msmsgs.exe
    O4 - Startup: OpenOffice.org 2.0.lnk = C:\Programme\OpenOffice.org 2.0\program\quickstart.exe
    O4 - Global Startup: talk&surf 6.0 - Monitor.lnk = C:\Programme\Gigaset DECT\talk&surf_6_0\semon21.exe
    O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe
    O9 - Extra->Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe
    O9 - Extra button: Buffy BAR - 1.6 - {D940F380-49C7-4A05-9E33-53930AF5768F} - C:\Programme\Buffy BAR\tbu1DA\nikis_collectibles.dll
    O9 - Extra->Tools' menuitem: Buffy BAR - 1.6 - {D940F380-49C7-4A05-9E33-53930AF5768F} - C:\Programme\Buffy BAR\tbu1DA\nikis_collectibles.dll
    O9 - Extra button: (no name) - {6685509E-B47B-4f47-8E16-9A5F3A62F683} - file://C:\Programme\Ebates_MoeMoneyMaker\Sy350\Tp350\scri350a.htm (file missing) (HKCU)
    O10 - Hijacked Internet access by New.Net
    O10 - Hijacked Internet access by WebHancer
    O10 - Hijacked Internet access by WebHancer
    O10 - Hijacked Internet access by WebHancer
    O10 - Hijacked Internet access by WebHancer
    O10 - Hijacked Internet access by New.Net
    O10 - Hijacked Internet access by New.Net
    O10 - Hijacked Internet access by New.Net
    O10 - Hijacked Internet access by New.Net
    O10 - Hijacked Internet access by WebHancer
    O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\ger.htm
    O15 - Trusted Zone: http://ny.contentmatch.net (HKLM)
    O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
    O16 - DPF: {14F65762-96FB-44B9-8DAC-93845F377A0E} (FileSharingCtrl Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/FileSharing/de/filesharingctrl.cab
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409
    O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
    O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (FilePlanet Download Control Class) - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_1_0_0_44.cab
    O16 - DPF: {42F2C9BA-614F-47C0-B3E3-ECFD34EED658} (Installer Class) - http://www.ysbweb.com/ist/softwares/v4.0/ysb_cracks.cab
    O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/activex/EPUWALControl_v1-0-3-9.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.c...ls/en/x86/client/wuweb_site.cab?1093806784781
    O16 - DPF: {7C559105-9ECF-42B8-B3F7-832E75EDD959} (Installer Class) - http://www.xxxtoolbar.com/ist/softwares/v4.0/0006_mp3.cab
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
    O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmessengersetupdownloader.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
    O16 - DPF: {D7BF3304-138B-4DD5-86EE-491BB6A2286C} (CParamWr Class) - http://toolbar.azesearch.com/install/azesearch.cab
    O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://www.shockwave.com/content/bejeweled2/popcaploader_v6.cab
    O16 - DPF: {E6A3C1E2-F792-483E-9133-596215172BE9} (AcceptLang Class) - http://runonce.msn.com/setacceptlang.cab
    O17 - HKLM\System\CCS\Services\Tcpip\..\{37BAD19F-6FB0-49D5-A976-A1D3E1C901E6}: NameServer = 195.50.140.252 195.50.140.114
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\msgrapp.dll (file missing)
    O23 - Service: 0190/0900 Warner Überwachungsdienst (0190_0900_Warner_MonitorService) - Mirko Böer - C:\Programme\0190wa~1\w0svc.exe
    O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: lxbu_device - Lexmark International, Inc. - C:\WINDOWS\System32\lxbucoms.exe
    O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\Programme\Norton Utilities\NPROTECT.EXE
    O23 - Service: PestPatrol Remote - PestPatrol, Inc. - C:\Programme\Gemeinsame Dateien\PestPatrol\ppRemoteService.exe
    O23 - Service: Speed Disk service - Symantec Corporation - C:\Programme\Speed Disk\nopdb.exe
    O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs Inc. - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    O23 - Service: xControlCOM - Siemens - C:\Programme\Gigaset DECT\talk&surf_6_0\xcontrolcom.exe
     
Die Seite wird geladen...

Re: Win Fixer Problem - Ähnliche Themen

Forum Datum
Re: Win Fixer Problem Windows XP Forum 3. Jan. 2006
WINFIXER PROBLEM, EINFACHE LÖSUNG! Windows XP Forum 1. März 2006
WinFixer Problem Wer kann helfen? Windows XP Forum 27. Nov. 2005
Ebenfalls Probleme mit WinFixer Viren, Trojaner, Spyware etc. 25. Nov. 2005
Win Fixer Problem Viren, Trojaner, Spyware etc. 8. Nov. 2005