Hilfe
Neues Thema
Antworten
brauche bitte Hilfe, das nervt
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programme\TGTSoft\StyleXP\StyleXPService.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\Explorer.EXE
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccProxy.exe
C:\WINDOWS\SYSTEM32\GEARSEC.EXE
C:\PROGRA~1\NORTON~2\NORTON~3\GHOSTS~2.EXE
C:\Programme\Norton Internet Security Professional\Norton AntiVirus\navapsvc.exe
C:\Programme\Norton Internet Security Professional\Norton AntiVirus\SAVScan.exe
C:\WINDOWS\System32\SLEE503.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\SNDSrvc.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe
C:\PROGRA~1\NORTON~2\NORTON~1\SPEEDD~1\NOPDB.EXE
C:\Programme\PTBSync\PTBSync.exe
C:\WINDOWS\System32\svchost.exe
C:\Programme\SlySoft\AnyDVD\AnyDVD.exe
C:\Programme\Norton SystemWorks\Norton Ghost\GhostStartTrayApp.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Programme\MSN Messenger\MsnMsgr.Exe
C:\Programme\TGTSoft\StyleXP\StyleXP.exe
C:\Programme\Internet Explorer\IEXPLORE.EXE
C:\Dokumente und Einstellungen\Lutz\Eigene Dateien\HijackThis.exe
C:\Programme\Microsoft Office\OFFICE11\OUTLOOK.EXE
C:\Programme\Microsoft Office\OFFICE11\WINWORD.EXE
C:\Programme\Norton Internet Security Professional\Norton AntiVirus\OPScan.exe
C:\Programme\Internet Explorer\IEXPLORE.EXE
--------------------------------------------------
Checking Windows NT UserInit:
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
UserInit = C:\WINDOWS\system32\userinit.exe,
--------------------------------------------------
Autorun entries from Registry:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
2kadiras = 2kadiras.exe
SoundMan = SOUNDMAN.EXE
AnyDVD = C:\Programme\SlySoft\AnyDVD\AnyDVD.exe
PinnacleDriverCheck = C:\WINDOWS\System32\PSDrvCheck.exe -CheckReg
ccApp = "C:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe"
URLLSTCK.exe = C:\Programme\Norton Internet Security Professional\UrlLstCk.exe
Advanced Tools Check = C:\PROGRA~1\NORTON~1\NORTON~1\AdvTools\ADVCHK.EXE
PTBSync = C:\Programme\PTBSync\PTBSync.exe /Start
open = C:\DOKUME~1\Lutz\LOKALE~1\Temp\open.exe
stor = C:\DOKUME~1\Lutz\LOKALE~1\Temp\stor.exe
help = C:\DOKUME~1\Lutz\LOKALE~1\Temp\help.exe
shell = C:\DOKUME~1\Lutz\LOKALE~1\Temp\shell.exe
list = C:\DOKUME~1\Lutz\LOKALE~1\Temp\list.exe
components = C:\DOKUME~1\Lutz\LOKALE~1\Temp\components.exe
storage = C:\DOKUME~1\Lutz\LOKALE~1\Temp\storage.exe
goggle = C:\DOKUME~1\Lutz\LOKALE~1\Temp\goggle.exe
Wmedia = C:\DOKUME~1\Lutz\LOKALE~1\Temp\Wmedia.exe
NeroFilterCheck = C:\WINDOWS\system32\NeroCheck.exe
GhostStartTrayApp = C:\Programme\Norton SystemWorks\Norton Ghost\GhostStartTrayApp.exe
--------------------------------------------------
Autorun entries from Registry:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
CTFMON.EXE = C:\WINDOWS\System32\ctfmon.exe
MsnMsgr = "C:\Programme\MSN Messenger\MsnMsgr.Exe" /background
Symantec NetDriver Monitor = C:\PROGRA~1\SYMNET~1\SNDMon.exe
STYLEXP = C:\Programme\TGTSoft\StyleXP\StyleXP.exe -Hide
--------------------------------------------------
Shell & screensaver key from C:\WINDOWS\SYSTEM.INI:
Shell=*INI section not found*
SCRNSAVE.EXE=*INI section not found*
drivers=*INI section not found*
Shell & screensaver key from Registry:
Shell=Explorer.exe
SCRNSAVE.EXE=C:\WINDOWS\system32\logon.scr
drivers=*Registry value not found*
Policies Shell key:
HKCU\..\Policies: Shell=*Registry key not found*
HKLM\..\Policies: Shell=*Registry value not found*
--------------------------------------------------
Enumerating Browser Helper Objects:
(no name) - C:\Programme\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}
Web assistant - C:\Programme\Gemeinsame Dateien\Symantec Shared\AdBlocking\NISShExt.dll - {9ECB9560-04F9-4bbc-943D-298DDF1699E1}
(no name) - c:\programme\google\googletoolbar2.dll - {AA58ED58-01DD-4d91-8333-CF10577473F7}
(no name) - C:\Programme\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll - {AE7CD045-E861-484f-8273-0445EE161910}
NAV Helper - C:\Programme\Norton Internet Security Professional\Norton AntiVirus\NavShExt.dll - {BDF3E430-B101-42AD-A544-FADC6B084872}
--------------------------------------------------
Enumerating Task Scheduler jobs:
1-Klick-Wartung.job
Norton AntiVirus - Meinen Computer prüfen.job
Norton SystemWorks One Button Checkup.job
Symantec Drmc.job
Symantec NetDetect.job
--------------------------------------------------
Enumerating Download Program Files:
[Minesweeper Flags Class]
InProcServer32 = C:\WINDOWS\Downloaded Program Files\minesweeper.dll
CODEBASE = http://messenger.zone.msn.com/binary/MineS...er.cab28578.cab
[MessengerStatsClient Class]
InProcServer32 = C:\WINDOWS\Downloaded Program Files\messengerstatsclient.dll
CODEBASE = http://messenger.zone.msn.com/binary/Messe...nt.cab28578.cab
[Update Class]
InProcServer32 = C:\WINDOWS\System32\iuctl.dll
CODEBASE = http://v4.windowsupdate.microsoft.com/CAB/...38156.183275463
[Shockwave Flash Object]
InProcServer32 = C:\WINDOWS\System32\macromed\flash\Flash.ocx
CODEBASE = http://fpdownload.macromedia.com/get/shock...ash/swflash.cab
--------------------------------------------------
Enumerating ShellServiceObjectDelayLoad items:
PostBootReminder: C:\WINDOWS\system32\SHELL32.dll
CDBurn: C:\WINDOWS\system32\SHELL32.dll
WebCheck: C:\WINDOWS\System32\webcheck.dll
SysTray: C:\WINDOWS\System32\stobject.dll
--------------------------------------------------
End of report, 6.970 bytes
Report generated in 0,015 seconds
Command line options:
/verbose - to add additional info on each section
/complete - to include empty sections and unsuspicious data
/full - to include several rarely-important sections
/force9x - to include Win9x-only startups even if running on WinNT
/forcent - to include WinNT-only startups even if running on Win9x
/forceall - to include all Win9x and WinNT startups, regardless of platform
/history - to list version history only
Dieser Beitrag wurde von Lulle bearbeitet: 22. Juli 2004 - 11:04
Nach oben
