Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:32:02, on 03.07.2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
C:\Programme 02\Security\ClamWin\bin\ClamTray.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\WINDOWS\system32\oodtray.exe
F:\System VMware\VMware Workstation PRG\vmware-tray.exe
C:\WINDOWS\system32\ctfmon.exe
F:\programme 03\desktop\dexpot\dexpot prg\dexpot.exe
F:\Programme 03\System\Virtual Environment\Sandboxie PRG\SbieCtrl.exe
F:\Programme 03\Desktop\Dexpot\Dexpot PRG\Dexpot.exe
F:\Programme 03\Security\InterNet u NETWORK\PeerGuardian 2\PeerGuardian2 PRG\pg2.exe
C:\Program Files\Terminator\TV7131 Utilities\P3XRCtl.exe
C:\Program Files\Allzeit Atomzeit\Atomzeit.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Programme 02\Security\FRITZ!DSL\IGDCTRL.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\oodag.exe
F:\Programme 03\Recovery\R(ecovery)-Studio\R-Studio v3.5_de\R-Studio Agent 3.0 build 841_de PRG\RSAgent.exe
F:\Programme 03\System\Virtual Environment\Sandboxie PRG\SbieSvc.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\VMware\VMware Virtual Image Editing\vmount2.exe
C:\WINDOWS\system32\vmnat.exe
F:\System VMware\VMware Workstation PRG\vmware-authd.exe
C:\WINDOWS\system32\vmnetdhcp.exe
C:\WINDOWS\system32\wuauclt.exe
F:\Programme 03\Security\HijackThis 2.0.2 PRG\HijackThis.exe
C:\WINDOWS\system32\wuauclt.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = h**p://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = h**p://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = h**p://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\ctbr.dll (file missing)
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Programme 03\InterNet\Downloadmanager\Flashget PRG\jccatch.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - F:\PROGRA~1\Security\TROJAN~1\Spybot\SPYBOT~1.20P\SDHelper.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Programme 03\InterNet\Downloadmanager\Flashget PRG\getflash.dll
O3 - Toolbar: &Crawler Toolbar - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\ctbr.dll (file missing)
O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
O4 - HKLM\..\Run: [ClamWin] "C:\Programme 02\Security\ClamWin\bin\ClamTray.exe" --logon
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [OODefragTray] C:\WINDOWS\system32\oodtray.exe
O4 - HKLM\..\Run: [vmware-tray] F:\System VMware\VMware Workstation PRG\vmware-tray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] F:\Programme 03\Security\TROJAN-SCANNER\Spybot\Spybot v1.5.2.20 PRG\TeaTimer.exe
O4 - HKCU\..\Run: [Dexpot 1.2] f:\programme 03\desktop\dexpot\dexpot prg\dexpot.exe
O4 - HKCU\..\Run: [SandboxieControl] "F:\Programme 03\System\Virtual Environment\Sandboxie PRG\SbieCtrl.exe"
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O4 - Startup: ERUNT AutoBackup.lnk = C:\Programme 02\System\Registry\ERUNT\AUTOBACK.EXE
O4 - Startup: HDDlife.lnk = ?
O4 - Global Startup: AutorunsDisabled
O4 - Global Startup: Dexpot v1.4.lnk = Desktop\Dexpot\Dexpot PRG\Dexpot.exe
O4 - Global Startup: PeerGuardian2 (for Torrents).lnk = Security\InterNet u NETWORK\PeerGuardian 2\PeerGuardian2 PRG\pg2.exe
O4 - Global Startup: TV Remote Control.lnk = C:\Program Files\Terminator\TV7131 Utilities\P3XRCtl.exe
O4 - Global Startup: Uhr Allzeit Atomzeit (leise, 3 Min. verzögert).lnk = C:\Program Files\Allzeit Atomzeit\Atomzeit.exe
O8 - Extra context menu item: &Alles mit FlashGet laden - C:\Programme 03\InterNet\Downloadmanager\Flashget PRG\jc_all.htm
O8 - Extra context menu item: &Mit FlashGet laden - C:\Programme 03\InterNet\Downloadmanager\Flashget PRG\jc_link.htm
O8 - Extra context menu item: Block advertisement - h**p://localhost:4002/cookie.cooker/scriptwerbung
O8 - Extra context menu item: CC Web-Interface - h**p://localhost:4002/cookie.cooker/loadifscript
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: Fill form (random) - h**p://localhost:4002/cookie.cooker/fillscriptr
O8 - Extra context menu item: Fill form (real data) - h**p://localhost:4002/cookie.cooker/fillscriptp
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~2\Office\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Zur Filterliste hinzufügen (WebWasher) - h**p://-Web.Washer-/ie_add
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\Office\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\PROGRA~1\Security\TROJAN~1\Spybot\SPYBOT~1.20P\SDHelper.dll (file missing)
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\PROGRA~1\Security\TROJAN~1\Spybot\SPYBOT~1.20P\SDHelper.dll (file missing)
O13 - DefaultPrefix:
O13 - WWW Prefix:
O13 - Home Prefix:
O13 - Mosaic Prefix:
O13 - FTP Prefix:
O13 - Gopher Prefix:
O17 - HKLM\System\CCS\Services\Tcpip\..\{504F516C-54BB-494C-96E6-0FB50C5B8B22}: NameServer = 192.168.178.254,192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{CED3DDF5-9A7D-40DB-AE23-FD3E4DCA95EA}: NameServer = 192.168.0.20,192.168.0.1
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\ctbr.dll (file missing)
O23 - Service: Ad-Aware 2007 Service (aawservice) - Unknown owner - F:\Programme 03\Security\TROJAN-SCANNER\Ad-aware\Ad-Aware 2007 PRG\aawservice.exe (file missing)
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVM IGD CTRL Service - AVM Berlin - C:\Programme 02\Security\FRITZ!DSL\IGDCTRL.EXE
O23 - Service: Bonjour-Dienst (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: AVM FRITZ!web Routing Service (de_serv) - AVM Berlin - C:\Program Files\Common Files\AVM\de_serv.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: IZMQOUDXFALJ - Unknown owner - C:\DOCUME~1\a\LOCALS~1\Temp\IZMQOUDXFALJ.exe (file missing)
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - (no file)
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: R-Studio Agent - R-Tools Technology Inc. - F:\Programme 03\Recovery\R(ecovery)-Studio\R-Studio v3.5_de\R-Studio Agent 3.0 build 841_de PRG\RSAgent.exe
O23 - Service: Sandra Service (SandraTheSrv) - SiSoftware - F:\Programme 03\System\Diagnose\Sisoft Sandra\SiSoft Sandra 2005 PRG\RpcSandraSrv.exe
O23 - Service: Sandboxie Service (SbieSvc) - tzuk - F:\Programme 03\System\Virtual Environment\Sandboxie PRG\SbieSvc.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Unknown owner - F:\Programme 03\Security\TROJAN-SCANNER\Spyware Terminator\Spyware Terminator\sp_rsser.exe (file missing)
O23 - Service: VMware Agent Service (ufad-ws60) - VMware, Inc. - F:\System VMware\VMware Workstation PRG\vmware-ufad.exe
O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - F:\System VMware\VMware Workstation PRG\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\WINDOWS\system32\vmnetdhcp.exe
O23 - Service: VMware Virtual Mount Manager Extended (vmount2) - VMware, Inc. - C:\Program Files\Common Files\VMware\VMware Virtual Image Editing\vmount2.exe
O23 - Service: VMware NAT Service - VMware, Inc. - C:\WINDOWS\system32\vmnat.exe

--
End of file - 10036 bytes

Sorry, falsches Log.

Hier das richtige:

Gruß

Tiger

Logfile of The Avenger Version 2.0, (c) by Swandog46
h**p://swandog46.geekstogo.com

Platform: Windows XP

*******************

Script file opened successfully.
Script file read successfully.

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

Rootkit scan active.
No rootkits found!

Folder "F:\Programme 03\Security\TROJAN-SCANNER" deleted successfully.

Completed script processing.

*******************

Finished! Terminate.

Fixe mit HJT bitte alle .......(no file) und ........(file missing) Einträge.

Danach sollte alles gut aussehen.

hallo,

hier das aktueele Log:

Gruß

Tiger

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:24:31, on 03.07.2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
C:\Programme 02\Security\ClamWin\bin\ClamTray.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\WINDOWS\system32\oodtray.exe
F:\System VMware\VMware Workstation PRG\vmware-tray.exe
C:\WINDOWS\system32\ctfmon.exe
F:\programme 03\desktop\dexpot\dexpot prg\dexpot.exe
F:\Programme 03\System\Virtual Environment\Sandboxie PRG\SbieCtrl.exe
F:\Programme 03\Desktop\Dexpot\Dexpot PRG\Dexpot.exe
F:\Programme 03\Security\InterNet u NETWORK\PeerGuardian 2\PeerGuardian2 PRG\pg2.exe
C:\Program Files\Terminator\TV7131 Utilities\P3XRCtl.exe
C:\Program Files\Allzeit Atomzeit\Atomzeit.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Programme 02\Security\FRITZ!DSL\IGDCTRL.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\oodag.exe
F:\Programme 03\Recovery\R(ecovery)-Studio\R-Studio v3.5_de\R-Studio Agent 3.0 build 841_de PRG\RSAgent.exe
F:\Programme 03\System\Virtual Environment\Sandboxie PRG\SbieSvc.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\VMware\VMware Virtual Image Editing\vmount2.exe
C:\WINDOWS\system32\vmnat.exe
C:\WINDOWS\system32\vmnetdhcp.exe
F:\System VMware\VMware Workstation PRG\vmware-authd.exe
C:\WINDOWS\System32\svchost.exe
F:\Programme 03\Security\HijackThis 2.0.2 PRG\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = h**p://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = h**p://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = h**p://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Programme 03\InterNet\Downloadmanager\Flashget PRG\jccatch.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Programme 03\InterNet\Downloadmanager\Flashget PRG\getflash.dll
O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
O4 - HKLM\..\Run: [ClamWin] "C:\Programme 02\Security\ClamWin\bin\ClamTray.exe" --logon
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [OODefragTray] C:\WINDOWS\system32\oodtray.exe
O4 - HKLM\..\Run: [vmware-tray] F:\System VMware\VMware Workstation PRG\vmware-tray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] F:\Programme 03\Security\TROJAN-SCANNER\Spybot\Spybot v1.5.2.20 PRG\TeaTimer.exe
O4 - HKCU\..\Run: [Dexpot 1.2] f:\programme 03\desktop\dexpot\dexpot prg\dexpot.exe
O4 - HKCU\..\Run: [SandboxieControl] "F:\Programme 03\System\Virtual Environment\Sandboxie PRG\SbieCtrl.exe"
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O4 - Startup: ERUNT AutoBackup.lnk = C:\Programme 02\System\Registry\ERUNT\AUTOBACK.EXE
O4 - Startup: HDDlife.lnk = ?
O4 - Global Startup: AutorunsDisabled
O4 - Global Startup: Dexpot v1.4.lnk = Desktop\Dexpot\Dexpot PRG\Dexpot.exe
O4 - Global Startup: PeerGuardian2 (for Torrents).lnk = Security\InterNet u NETWORK\PeerGuardian 2\PeerGuardian2 PRG\pg2.exe
O4 - Global Startup: TV Remote Control.lnk = C:\Program Files\Terminator\TV7131 Utilities\P3XRCtl.exe
O4 - Global Startup: Uhr Allzeit Atomzeit (leise, 3 Min. verzögert).lnk = C:\Program Files\Allzeit Atomzeit\Atomzeit.exe
O8 - Extra context menu item: &Alles mit FlashGet laden - C:\Programme 03\InterNet\Downloadmanager\Flashget PRG\jc_all.htm
O8 - Extra context menu item: &Mit FlashGet laden - C:\Programme 03\InterNet\Downloadmanager\Flashget PRG\jc_link.htm
O8 - Extra context menu item: Block advertisement - h**p://localhost:4002/cookie.cooker/scriptwerbung
O8 - Extra context menu item: CC Web-Interface - h**p://localhost:4002/cookie.cooker/loadifscript
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: Fill form (random) - h**p://localhost:4002/cookie.cooker/fillscriptr
O8 - Extra context menu item: Fill form (real data) - h**p://localhost:4002/cookie.cooker/fillscriptp
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~2\Office\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Zur Filterliste hinzufügen (WebWasher) - h**p://-Web.Washer-/ie_add
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\Office\MICROS~1\OFFICE11\REFIEBAR.DLL
O13 - DefaultPrefix:
O13 - WWW Prefix:
O13 - Home Prefix:
O13 - Mosaic Prefix:
O13 - FTP Prefix:
O13 - Gopher Prefix:
O17 - HKLM\System\CCS\Services\Tcpip\..\{504F516C-54BB-494C-96E6-0FB50C5B8B22}: NameServer = 192.168.178.254,192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{CED3DDF5-9A7D-40DB-AE23-FD3E4DCA95EA}: NameServer = 192.168.0.20,192.168.0.1
O23 - Service: Ad-Aware 2007 Service (aawservice) - Unknown owner - F:\Programme 03\Security\TROJAN-SCANNER\Ad-aware\Ad-Aware 2007 PRG\aawservice.exe (file missing)
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVM IGD CTRL Service - AVM Berlin - C:\Programme 02\Security\FRITZ!DSL\IGDCTRL.EXE
O23 - Service: Bonjour-Dienst (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: AVM FRITZ!web Routing Service (de_serv) - AVM Berlin - C:\Program Files\Common Files\AVM\de_serv.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - (no file)
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: R-Studio Agent - R-Tools Technology Inc. - F:\Programme 03\Recovery\R(ecovery)-Studio\R-Studio v3.5_de\R-Studio Agent 3.0 build 841_de PRG\RSAgent.exe
O23 - Service: Sandra Service (SandraTheSrv) - SiSoftware - F:\Programme 03\System\Diagnose\Sisoft Sandra\SiSoft Sandra 2005 PRG\RpcSandraSrv.exe
O23 - Service: Sandboxie Service (SbieSvc) - tzuk - F:\Programme 03\System\Virtual Environment\Sandboxie PRG\SbieSvc.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Unknown owner - F:\Programme 03\Security\TROJAN-SCANNER\Spyware Terminator\Spyware Terminator\sp_rsser.exe (file missing)
O23 - Service: VMware Agent Service (ufad-ws60) - VMware, Inc. - F:\System VMware\VMware Workstation PRG\vmware-ufad.exe
O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - F:\System VMware\VMware Workstation PRG\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\WINDOWS\system32\vmnetdhcp.exe
O23 - Service: VMware Virtual Mount Manager Extended (vmount2) - VMware, Inc. - C:\Program Files\Common Files\VMware\VMware Virtual Image Editing\vmount2.exe
O23 - Service: VMware NAT Service - VMware, Inc. - C:\WINDOWS\system32\vmnat.exe

--
End of file - 9029 bytes

Warum hast du die roten nicht gefixt? Oder kommen die immer wieder?

korrekt, die kommen wieder.

Gruß

Tiger

Überprüfe dein System mit SASW.